Solved

DNS server

Posted on 2014-04-24
6
456 Views
Last Modified: 2014-04-25
I am looking to set up a windows 2008 DNS server in our environment to resolve approx. ten or fifteen static host records for hosts in our domain. For example, Host1.fargo.k12.ok.us For all other host query’s, regardless of FQDN, I would like to have this DNS server forward them to our AD integrated DNS.

I have attempted this by bringing up a DNS server, creating a fargo.k12.ok.us zone and creating a few records but can’t seem to get it to forward DNS query’s for other hosts in the fargo.k12.ok.us domain. Instead nslookup returns a DNS request time out. Timeout was 2 seconds. However, I am able to resolve hosts NOT in my domain, google.com or even hosts in my parent domain.

I have confirmed that I have fowardes set on the server and have attempted adding aditional Nname servers in that zone.

What’s the best way to accomplish this? I’ve never set up a rouge DNS server, so this is a learning experience!

The reasoning behind this has to do with the fact that if a Windows 7 laptop can resolve a fileserver’s IP, it will not allow you to access offline files that are synchronized from that sever. Our VPN cannot communicate with their local file server, but because it uses our internal DNS to resolve the hostname of the file server….the VPN user cannot access there offline files. We limit that communication because of slow air card connections our folks use. It worked great in XP, guess they “improved” this feature.

brent
0
Comment
Question by:Realpoet02
  • 3
  • 2
6 Comments
 
LVL 14

Expert Comment

by:Justin Yeung
ID: 40020970
since you have the zone on your dns server, it will only look for what ever is in your zone from that server, it will not lookup via forwarder, since it thinks it has the zone and the return value is null.

at this point, I believe you better use DNS zone transfer or AD stub zone.

use the DNS server as a standalone DNS server.
0
 

Author Comment

by:Realpoet02
ID: 40021126
Unfortunately when I make it a secondary zone or stub zone and transfer the zone from another DNS server, the new DNS server won’t let me make changes to the zone. The DNS snap in doesn’t give me the option to create a new host record or edit one that already exists.
0
 
LVL 14

Expert Comment

by:Justin Yeung
ID: 40021151
Yes since these are sub zone

If you want a full editable zone, you have to run it as adds zone
0
3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

 

Author Comment

by:Realpoet02
ID: 40021355
I assume that's short for AD Intergrated? If so, is there a different DNS product other than windows that will work for me?
0
 
LVL 39

Accepted Solution

by:
footech earned 500 total points
ID: 40021529
The best you can do is as follows:
You can configure a zone for something like "Host1.fargo.k12.ok.us".  Then inside of that zone, create an A record and leave the name blank.  It will show the name as "same as parent" after it's created.  This zone will not have any effect on resolution for any records within the "fargo.k12.ok.us" domain.  Requests for other hosts in that domain would still be forwarded on, unless you have a zone for "fargo.k12.ok.us".  However, if you had any requests for something like "XXX.Host1.fargo.k12.ok.us" (hopefully you don't need to forward requests like these) then it would be resolved by the info in the "Host1.fargo.k12.ok.us" zone - just so you're aware.

You would have to create a new zone and associated A record (with blank name) for each of the records that you want resolved by this DNS server.
0
 

Author Closing Comment

by:Realpoet02
ID: 40022939
Worked great! Thanks for your assistance!
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

One of the most often confused topics in the area DNS is the idea of GLUE records. Specifically, what they are, when they are needed, when they are provided, and how they are created. First, WHAT IS GLUE? To understand GLUE, you must first under…
I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question