DNS Setting for Domain controller

Have a small domain and needed a hurry up domain controller installed.

Running well enough but routinely run into issues with public and domain name resolution.

I'm sure I never set the forwarding for the public DNS on the controller right.  Any good checklist reviews for verifying my set up and what i may have done wrong/missed?

This is a Windowss 2008 server...
VirtualKansasAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Sarang TinguriaConnect With a Mentor Sr EngineerCommented:
Refer Below link for DNS best Practices...


How we should Configuere DNS on our DC :-->

Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties
All the unused NIC's to be disabled
Valid DNS Ip from ISP to be configuered in DNS forwarders Do not configuere local DNS in forwarders
Public DNS IP's Should not be used at any NIC Card except Forwarders
Domain Controllers should not be multi-homed
Running VPN server and RRas server makes the DC multihomed refer http://support.microsoft.com/default.aspx?scid=kb;en-us;272294


If anything above is incorrect please correct it and run "ipconfig /flushdns & ipconfig /registerdns " and restart DNS service using "net stop dns & net start dns"

DNS best practices
http://technet.microsoft.com/en-us/library/cc778439(v=WS.10).aspx

Checklist: Deploying DNS for Active Directory
http://technet.microsoft.com/en-us/library/cc757116(v=ws.10)

DNS Arguments

http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail-sack-saturday-edition.aspx#dnsbest


http://abhijitw.wordpress.com/2012/03/03/best-practices-for-dns-client-settings-on-domain-controller/
0
 
gurutcCommented:
Hi,

Which computers are having the public/private issues?  The client pcs?  the server?  Are you using DHCP coming from the Domain Controller?

- gurutc
0
 
VirtualKansasAuthor Commented:
The client PC's.  It's been nearly a year since I set up this network, so not positive where DHCP is, but it appears its not on the DC.  

This is a really strange network because we have field offices that are tunnel VPN'ed to HQ and really strange in that no one is really ever in the HQ office.  So field offices come & go and there is a lot of tunnel and other VPN that consumes these services.
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
VirtualKansasAuthor Commented:
I think I may simply failed to take the time to set up forwarders in the DNS of the DC's for public name resolution.  Chicken & egg problem; field offices got set up before there was ever a domain.
0
 
gurutcCommented:
deal, nothing configured on the adapters for public resolution, right?

sounds like you're ciphered.

- gurutc
0
 
VirtualKansasAuthor Commented:
OK; I'm at HQ office in proximity of a back up DC.  The primary believe it or not is in a field office.  The back up DC is set for primary DNS as a loop back and secondary as the PDC.  No public DNS on this adapter.
0
 
VirtualKansasAuthor Commented:
OK; checked PDC and same.  1st lookup is self, 2nd is another DC.
0
 
gurutcCommented:
yes sometimes that'll do the trick if you've got a public DNS anywhere.

- gurutc
0
 
VirtualKansasAuthor Commented:
don't think i have a public dns anywhere
0
 
VirtualKansasAuthor Commented:
so kind of jack of all master of none, here; do i need to add a forwarder for public dns?  is that my loose end?
0
 
VirtualKansasAuthor Commented:
yes; definitely need help.  Certain external dns not resolving when in the HQ LAN.  Forwarder?
0
 
VirtualKansasAuthor Commented:
I'll take this as the best answer.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.