Alternate DNS Servers for Windows Server

Not sure that I can explain this well but, if I want to have my ISP's DNS servers included in a Windows Server 2003 DNS server how do I add them? I am trying to duplicate a previous setup where two ISP DNS servers were included before a PDC failed. BDC is providing services but does not pass these additional DNS servers to the workstations.

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
DanielTAuthor Commented:
This is what I thought and had been looking at forwarders but, I did not have the server name. I see (now) that I can use the IP address as the name as well and will give it a shot.

JohnBannonIT ManagerCommented:
Use the Server manager, connect to internet wizard
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

DanielTAuthor Commented:

Thanks. Got things working.
There was only one web site (reported) that was affected but it was certainly a DNS issue and it works now.

Puzzled by something though...
an IPCONFIG /ALL at any of the workstations would previously report two internal servers, the main router and two ISP DNS servers. This is not the case now but DNS seems to be working. Why/How are the additional DNS servers passed to the workstations?

Bruno PACIIT ConsultantCommented:

No, the additional DNS server SHOULD NOT and MUST NEVER be passed to the workstations.

Your worsktation MUST ONLY interrogate your internal DNS serverr.
What happen when you declare forwarders on a DNS server is that this DNS server is now able to retransmit a request to the forwarders if it is unable to resolve itself.

So, here are the steps that occurs when a worstation asks for an external DNS name:

1) The workstation send a DNS request for the external anme to your internal DNS server.
2) The internal DNS server receives the DNS request and read it. As the DNS server doesn't hosts the DNS zone matching the request, and as it has DNS forwarders configured it transmit the DNS resquest to the forwarders which are the external DNS servers.
3) The external DNS server receives the DNS request and resolves it. It sends back the response to the internal DNS server that has sent the request.
4) The internal DNS server receives the response from the external DNS server. It keeps this response in its local DNS cache and sends the response to the workstation.

As you can see, the workstation NEVER dialog with external DNS servers, and that is the only good way to do DNS internal/external resolution.

Have a good day.
DanielTAuthor Commented:
That actually makes a great deal of sense and is exactly what I would expect!
Thanks MUCH for the clarification.

I was puzzled as to how/why the 'failed' server was doing this.
It was the PDC and was handling DHCP, DNS etc.
How would workstations be receiving this info?

Here's an example of what I would see in an old IPCONFIG /ALL check...
(.50 and .51 were the servers)

Ethernet adapter UACoffice:
       Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : Intel(R) 82567LF-2 Gigabit Network Connection
        Physical Address. . . . . . . . . : 00-1C-C0-xx-XX-XX
        Dhcp Enabled. . . . . . . . . . . : Yes
        Autoconfiguration Enabled . . . . : Yes
        IP Address. . . . . . . . . . . . :
        Subnet Mask . . . . . . . . . . . :
        Default Gateway . . . . . . . . . :
        DHCP Server . . . . . . . . . . . :
        DNS Servers . . . . . . . . . . . :

Do you know why I would not be seeing ONLY .50 and .51 as DNS Servers vs also the router and the external xxx.153 addresses?
Bruno PACIIT ConsultantCommented:

Looking at the IPCONFIG result, DNS servers used by the computer come from the DHCP server.

Somewhere in the DHCP ranges settings you probably have added these 5 DNS servers.

Don't forget that in DHCP you can set a DNS server list in the IP range extended options, but ALSO in the DHCP server extended options.
So if you have configure some DNS servers on the DHCP IP range options, and other DNS servers on the DHCP server options you DHCP client will receive all these DNS servers.

Have a nice day
DanielTAuthor Commented:
From your previous comment then, this is not a good way to configure, right? I did not setup that server and since it has since failed, cannot check to see where it was setup per your advice (but thanks!).

If the DHCP forwarding should be used for clients to resolve external addresses what would this setup be used for? (assuming it even should be at all) This is what prompted mu initial question as I was not sure how the workstations were receiving the additional DNS server info but I pretty much knew it was from

DanielTAuthor Commented:
Thanks for everyone's input. Would still like to know about that last question but it is not important relative to the thread.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.