Solved

I need advice in setting up DNS entries Windows Server 2008

Posted on 2013-05-23
7
357 Views
Last Modified: 2013-06-04
I just got the following instructions from our corporate headquarters;

"You will need to create DNS entries for the following names and IPs .. this will permit your users to use URL's they receive in email."

And a list of FQDNs and public follow i.e.             abc.xyz.com  101.123.12.45

We are a different domain then our corporate headquarters and have no trust, but we will have a VPN tunnel. The result of the  DNS entries is to allow users URLs sent in emails to resolve back to the user.

I am in our DNS server and see "ourdomain.com" and I see where to add "Host Entries" but if I put these addresses there it will be extened with our domain, which I am calling "ourdomain.com" Where can I make entries in DNS to resolve a public IP to a FQDN that is not part of our domain?
0
Comment
Question by:Thor2923
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39191807
So you need to have hosts in your domain resolve names in the corporate zone?  Have you thought about conditional forwarders/stub zone/or secondary zone.  

Thanks

Mike
0
 
LVL 1

Expert Comment

by:sovworker
ID: 39191813
I think you can just put in an A Record in your forward lookup zone to it resolves.

For example,

If Ourdomain.com users frequently need to talk to a domain (theirdomain.com)where the DNS for that domain is not published, you would create an A record for their domain.

Theirdomain.com  1.2.3.4

Therefore, if a user on OurDomain.com tries to point IE or Explorer at widget.theirdomain.com, your DNS would not know where "Widget" is, but it would know that since "Widget" resides at TheirDomain.com it would forward that request to their DNS servers.  I suspect that you would point it at their DNS.
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39191827
....he is asking where to put the A record.  His DNS server doesn't have a zone for theirdomain.com



Thanks

Mike
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 1

Author Comment

by:Thor2923
ID: 39191861
this intstructions just say add DNS entries for xxx.ourdomain.com 123.123.123.123

I guess I will just have to ask corp to be more specific..thanks
0
 
LVL 1

Expert Comment

by:sovworker
ID: 39191875
In your MMC, right click your DNS server and select New Zone, make it forward lookup zone, give it the name of the other domain, specify the IP addresses of the DNS servers and voila!
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39191894
He could just setup a conditional forwarder.


Thanks

Mike
0
 
LVL 38

Accepted Solution

by:
ChiefIT earned 500 total points
ID: 39192156
Do not worry about public DNS resolution to the fully qualified domain name. Public IPs are either resolved through forwarding servers, or root servers (forwarders or root hints). Those servers will perform a DNS query on behalf of the client or refer the client to an outside server for resolution (depending upon how your DNS is configured).

What that leaves is your Corp office isn't getting internal DNS reslution to point the clients to the VPN network for resolution. Since you do not have a zone transfer or trust between you and corp, you will have to manually add those IP's within the HOST A records of your local DNS server. That's all you need to do.

If you are having problems with (PUBLIC) resolution, then let us know so we can troubleshoot Forwarding or Root servers.

What would help you considerably, is an understanding of the route a DNS query takes. I wrote an article on this, that you might want to look at:
http://www.experts-exchange.com/Networking/Protocols/DNS/A_323-DNS-Troubleshooting-made-easy.html
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question