Solved

Where should I point my backup domain controller & DNS server

Posted on 2013-11-24
7
503 Views
Last Modified: 2013-11-24
My main domain controller is setup to point to itself.

Primary DNS 192.168.1.100
Secondary     192.168.1.101


On backup domain controller/dns should I point it to itself for primary or use the same as above?
0
Comment
Question by:MEATBALLHERO
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 70

Expert Comment

by:KCTS
ID: 39673261
In the real world it doesn't really matter - some would argue that each should point to the other as the preferred DNS server and to themselves as the alternate,
0
 

Author Comment

by:MEATBALLHERO
ID: 39673280
What if both of these server are also DHCP servers but the scope is split. That is what I'm shooting for.
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39673283
I'd argue that it does matter so you can avoid race condition issues.  See my answer here:

http://www.experts-exchange.com/Software/Server_Software/File_Servers/Active_Directory/Q_27556645.html

You are good to go with DHCP, split scope is fine.

Thanks

Mike
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 70

Expert Comment

by:KCTS
ID: 39673295
I knew someone would say that :-)
0
 
LVL 8

Expert Comment

by:N-W
ID: 39673392
Microsoft's Best Practice recommendation is:

Primary: server's own private IP (192.168.1.101)
Secondary: next best DNS server (192.168.1.100)
Tertiary: loopback (127.0.0.1)
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 39673399
N-W please read the link I posted, where are you getting those best practices from

http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail-sack-saturday-edition.aspx#dnsbest

Thanks

Mike
0
 
LVL 8

Expert Comment

by:N-W
ID: 39673412
Directly from Microsoft's engineering team and Best Practices Analyzer.

Unfortunately there are internal debates within Microsoft regarding this (as the article also suggests).

A read through http://technet.microsoft.com/en-us/library/dd391963(v=ws.10).aspx and http://technet.microsoft.com/en-us/library/ff807362(v=ws.10).aspx should provide enough information to make an informed decision.
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
remote desktop user rights 5 97
GPO denied - but why ? 6 56
User Folder Creation and Permissions 3 46
Deploying MSI package with GPO 3 25
This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question