DNS, Active Directory
I have domain controllar and DNS configured in the same server.
I have two NIC cards.
Is it possible to bind both NIC card IP address in DNS
Pls help.
I have two NIC cards.
Is it possible to bind both NIC card IP address in DNS
Pls help.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Can I ask why you need two NICS on a windows Domain controller?
IF you have Two NICS and two IP's on different subnets registered in DNS for the same name, how is a client going to talk to the server on a guaranteed IP for its subnet?
I have yet to hear anybody answer the question "WHY do you need two NICS?" with a valid answer yet.
IF you have Two NICS and two IP's on different subnets registered in DNS for the same name, how is a client going to talk to the server on a guaranteed IP for its subnet?
I have yet to hear anybody answer the question "WHY do you need two NICS?" with a valid answer yet.
Not supported but have seen it working where one NIC has no IP addresses assigned for DNS server. It can still cause issues and if you need access to the DC from a different subnet, why don't you just implement a router and use routes.
"Not supported but have seen it working where one NIC has no IP addresses assigned for DNS server. It can still cause issues "
But the question was about having BOTH register in DNS and yes, it can STILL cause problems.
There should NEVER be a reason to have DUAL cards in a DC. a DC has a purpose and that purpose does not require or indeed work correctly, with Dual NIC's.
But the question was about having BOTH register in DNS and yes, it can STILL cause problems.
There should NEVER be a reason to have DUAL cards in a DC. a DC has a purpose and that purpose does not require or indeed work correctly, with Dual NIC's.
ASKER
There are two type of traffic flow in the network.
All infra related monitoring software, antivirus and backup must go through management network NIC 2, All production date go through NIC 1.
DNS servers will have original host created while joining hosts in the domain, and manually create one host with management IP for all hosts.
Example
DNS Records:
experts.domain.ca (this have production IP)
experts-it.domain.ca (this have management IP)
DNS both NIC cards it will have resolve names accordingly when traffic flow over NICs
Will it work without causing
All infra related monitoring software, antivirus and backup must go through management network NIC 2, All production date go through NIC 1.
DNS servers will have original host created while joining hosts in the domain, and manually create one host with management IP for all hosts.
Example
DNS Records:
experts.domain.ca (this have production IP)
experts-it.domain.ca (this have management IP)
DNS both NIC cards it will have resolve names accordingly when traffic flow over NICs
Will it work without causing
Easiest problem to describe is this.
What happens to ALL your clients on the "Management" network when they issue DNS requests? Where do they go? Where do they look? Are you going to give every machine in your org that needs 2 nics, 2 DNS names? Or do you intend configuring everything on the management network to use static IP Addresses and no DNS services?
The management overhead of using two NICS for a management network is massive. And the benefits? Has somebody read a book/blog/overheard a conversation in the pub? The theory is good but in practice....
Unless you FULLY understand ALL of the network discovery protocols in use and how everything ties into nics, you can cause one hell of a mess very quickly.
There are far better ways to manage you network traffic that to have two nics in every device on the network.
Quick question...
Are all of these NIC's going to have a different set of switches to the main infra switches? Or are you going to switch everything through a single set of switches?
What happens to ALL your clients on the "Management" network when they issue DNS requests? Where do they go? Where do they look? Are you going to give every machine in your org that needs 2 nics, 2 DNS names? Or do you intend configuring everything on the management network to use static IP Addresses and no DNS services?
The management overhead of using two NICS for a management network is massive. And the benefits? Has somebody read a book/blog/overheard a conversation in the pub? The theory is good but in practice....
Unless you FULLY understand ALL of the network discovery protocols in use and how everything ties into nics, you can cause one hell of a mess very quickly.
There are far better ways to manage you network traffic that to have two nics in every device on the network.
Quick question...
Are all of these NIC's going to have a different set of switches to the main infra switches? Or are you going to switch everything through a single set of switches?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
@Adam Resnick
Did you read the question? "I have domain controllar and DNS configured in the same server."
Did you read the question? "I have domain controllar and DNS configured in the same server."
@Neilsr - you are correct, my apologies. Went back and re-read the question.
Since clients queries and AD management tools use the same ports and protocols, for example LDAP you can not separate out management traffic easily. If any of your management tools need to do AD authentication then these ports will need to be bound to both NICs and you will have problems.
It appears to me that what this person wants isn't supported by normal DNS protocols. He wants a DIFFERENT reply to be given to the same DNS query depending on which network interface the DNS query arrives on. This would allow clients on the management subnet to connect to the server on its management IP, and clients on the user network to connect on the "normal" IP.
DNS doesn't work in this way. It can return a list of addresses, or it can round robin. The only way to achieve what the original question asks is to have two separate DNS servers and point the management clients at this other server. However this would break other things...
SO my answer would be "its not possible"....
DNS doesn't work in this way. It can return a list of addresses, or it can round robin. The only way to achieve what the original question asks is to have two separate DNS servers and point the management clients at this other server. However this would break other things...
SO my answer would be "its not possible"....
As already stated by all the experts, what you are asking for is not possible. You can not have multiple nics in servers and have a single DNS system respond with the "Correct" one for a particular task.
As I stated in the first reply to your post, it will only cause issues and not resolve any problems.
As I stated in the first reply to your post, it will only cause issues and not resolve any problems.
I've requested that this question be closed as follows:
Accepted answer: 500 points for Neilsr's comment #a40523281
for the following reason:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
Accepted answer: 500 points for Neilsr's comment #a40523281
for the following reason:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
Seth, not sure why you are only accepting one answer for this. There are obviously several comments that provide valuable info. Also as EEnookami has also stated that points should be distributed as well.
Will.
Will.
ASKER
When I checked the DNS configuration I found that both the IPs listed in the listen list for client resolution.
I checked the network binding order and changed in the below order.
NIC 1 --> Top 1
NIC 2 --> Top 2
When I do ipconfig I can see the binding order too..
But in the DNS listener list I see management IP in the first sequence.