Solved

DNS - Can a DNS zone share an AD Domain

Posted on 2014-03-17
10
331 Views
Last Modified: 2014-03-17
Hello

I'm reading some documentation/e-mails from a client that stipulated the following :-

Domain.com is the AD Domain.  This DNS zones for this are domain.com and anotherdomain.com dns zones.  Is this possible ?

I thought that the DNS zone anotherdomain.com would have to have its own AD Domain ? anotherdomain.com hasn't been delegated.

Thanks in advance
0
Comment
Question by:nico-
  • 6
  • 3
10 Comments
 
LVL 7

Expert Comment

by:SvenIA
Comment Utility
If anotherdomain.com has it's own DNS server, you can create a trust relationship between the 2 domains, and after that you can create a secondary dns zone in the domain.com domain.

http://technet.microsoft.com/en-us/library/cc775736(v=ws.10).aspx
0
 
LVL 13

Expert Comment

by:Santosh Gupta
Comment Utility
Hi,

What i understand, you have Active directory integrated DNS for Domain.com and you want a another new Zone for anotherdomain.com.

then yes, it is possible and very simple.
0
 

Author Comment

by:nico-
Comment Utility
Hi Sven

I'm not sure if I explained this very well.  The correspondence I've read and I'm not sure I agree with states

There is only one AD Domain - domain.com
It has two DNS zones - domain.com and anotherdomain.com

anotherdomain.com does not have an associated AD Domain.

my question is that - is this possible.  Can a DNS zone exist without an associated AD Domain ?

Cheers
0
 

Author Comment

by:nico-
Comment Utility
Hi Sanosh

So you can have a DNS zone without an associated - that is - related AD Domain.?

anotherdomain.com does not have to have a anotherdomain.com AD domain ?

Cheers
0
 

Author Comment

by:nico-
Comment Utility
I was reading in Minasi that every AD Domain needed a related DNS zone and assumed that worked in reverse.

Can you point to some articles that show what you mentioned please for my further knowledge and understanding

Cheers
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 13

Accepted Solution

by:
Santosh Gupta earned 500 total points
Comment Utility
Yes, Go to DNS management console, Right click on server name and select new forward lookup zone and follow the wizard.

OR

if you want to create a Zone for External DNS then, you should set up split DNS (sometimes referred to as split horizon DNS).
 On your internal DNS servers, add the domain.com as a new zone.  The new zone should be a primary zone, not a secondary zone because you want the ability for the external and internal zones to contain slightly different records (for some hostnames).

•Add all existing external DNS records on domain.com (external) to your domain.com (internal zone).  This allows you to resolve all names from inside or outside.

•The internal side can point to your internal IP addresses while the external side can point to your public IP addresses (and in some cases, internal will also point to public IP addresses).
0
 

Author Comment

by:nico-
Comment Utility
so the domain.com AD domain looks after domain.com and anotherdomain.com just by adding anotherdomain.com as a forward lookup zone ? .. this will then be replicated around by the AD Integrated DNS ?
0
 
LVL 13

Expert Comment

by:Santosh Gupta
Comment Utility
yes.

In addition, you can create reverse lookup zone as well if you want to resolve IP to host name of anotherdomain.com
0
 

Author Comment

by:nico-
Comment Utility
Not sure if I need to add another question for this, but this leads me on to thinking about when a user logs into a machine that is in the domain.com AD Domain but has its DNS name/ip in the anotherdomain.com dns zone.  I wonder what the point of this could be?
0
 

Author Closing Comment

by:nico-
Comment Utility
Superbly quick.  And then validated at my end.
Cheers
0

Featured Post

Too many email signature updates to deal with?

Do you feel like you are taking up all of your time constantly visiting users’ desks to make changes to email signatures? Wish you could manage all signatures from one central location, easily design them and deploy them quickly to users? Well, there is an easy way!

Join & Write a Comment

Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now