windows 2008 r2 reverse dns multiple subnets

Posted on 2013-11-17
Medium Priority
Last Modified: 2014-02-04
dear gurus, good day to you all

i do have a query for knowlede base to follow the gurus way

- we have below sites
BRANCH A 10.0.2./24
BRANCH B 10.0.9./24
BRANCH C 10.0.3./24
BRANCH D 10.0.10./24

- i have placed master AD/DNS server HO site, where 1 member dns/ad kept in dr site, beside each site has their own DNS/AD(additional or member domain controller)

- the issue is with reverse dns, how to do step by step any tips and guideline for such cases,
- do u have to do reverse dns of all above subnet at master server? and dr server?
- i want to place each site, in client machine ips master dns ip, dr dns ip, and that site or branch local dns ip, 3 dns to keep running
- in any case if 1st dns fail go to 2nd, if 2nd fail go to 3rd etc.
- to reduce the traffic network congestion i prefer each users/clients must report to local dns of that site only then try something else (like HO or DR site) or vice verse

ideally what work around on HO, DR and Sites/branches

all sites are interlinked by vpn

kind regards
Question by:tmsa12
LVL 24

Accepted Solution

Sandeshdubey earned 2000 total points
ID: 39655641
Reverse lookup zone is not created automatically you need to create the same.Reverse lookup zones and PTR resource records are not necessary for Active Directory to work, but you need them if you want clients to be able to resolve FQDNs from IP addresses. Also, PTR resource records are commonly used by some applications to verify the identities of clients.See below link how to add reverse lookup zone.
Adding a Reverse Lookup Zone

Note as the zone will be AD integrated the same will be replicated to other Dcs in the network.

Regarding the dns setting on client and DC see this:
Best practices for DNS client settings on DC and domain members.

You also need to ensure that AD sites and service is configured correctly.Map the subnet to correct AD site so that client can authenticate to local DC.http://technet.microsoft.com/en-us/library/cc736820(WS.10).aspx

See this DC locator process for more info:http://blogs.technet.com/b/arnaud_jumelet/archive/2010/07/05/domain-controller-locator-an-overview.aspx http://technet.microsoft.com/en-us/library/cc978011.aspx

Author Closing Comment

ID: 39832302
thank you can you close the case plz

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Scripts are great for performing batch jobs against users, however sometimes the GUI is all you need.
Native ability to set a user account password via AD GPO was removed because the passwords can be easily decrypted by any authenticated user in the domain. Microsoft recommends LAPS as a replacement and I have written an article that does something …
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question