| Author |
Message |
TagaR
Guest
|
 Posted:
Wed Dec 29, 2004 10:11 am Post subject:
Best Practice |
|
|
Hi,
I'm creating a domain with the following components. Would they be the best
practice?
DC1 as DNS1, WINS1, DHCP.
DC2 as DNS2, WINS2.
The DC1 IP config for DNS will point to DNS1 as pri and DNS2 as sec, while
WINS point to WINS1 as pri and WINS2 as sec.
The DC2 IP config for DNS will point to DNS2 as pri and DNS1 as sec, while
WINS point to WINS2 as pri and WINS1 sec.
Thnaks
TagaR |
|
| Back to top |
|
 |
Rebecca Chen [MSFT]
Guest
|
| Posted:
Wed Dec 29, 2004 4:31 pm Post subject:
RE: Best Practice |
|
|
If both DNS you have installed are AD-intergrated, this setting are
recommend. Otherwise, point to the AD-intergrated DNS server.
Best regards,
Rebecca Chen
MCSE2000 MCDBA CCNA
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights. |
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Wed Dec 29, 2004 5:11 pm Post subject:
Re: Best Practice |
|
|
"TagaR" <TagaR@discussions.microsoft.com> wrote in message
news:3DF58348-4F32-474A-90EF-99F27DE7973F@microsoft.com...
| Quote: | Hi,
I'm creating a domain with the following components. Would they be the
best
practice?
DC1 as DNS1, WINS1, DHCP.
DC2 as DNS2, WINS2.
The DC1 IP config for DNS will point to DNS1 as pri and DNS2 as sec, while
|
As Preferred and Alternate.
(Primary and Secondary have a different technical
meaning in DNS.)
| Quote: | WINS point to WINS1 as pri and WINS2 as sec.
The DC2 IP config for DNS will point to DNS2 as pri and DNS1 as sec, while
WINS point to WINS2 as pri and WINS1 sec.
|
I would do it this way, unless they only Primary is DNS1
in which case I would swap the order of DNS -- putting
the Primary first in both cases.
Unlike the other response I would still list them both,
and it is even SUPPOSED to work this way, but I would
prefer the DCs use a MODIFIABLE DNS server first.
Also, if you have plenty of addreses: I would make both
DHCP servers -- use the SAME range of addresses on
both -- AND then EXCLUDE a portion on each so that they
do not distribute the same addresses.
Note these overlapping scopes are opposite to what we
were taught long ago but this (above) is the correct way. |
|
| Back to top |
|
|
TagaR
Guest
|
| Posted:
Wed Dec 29, 2004 11:31 pm Post subject:
RE: Best Practice |
|
|
Thank you for your replies.
TagaR
"TagaR" wrote:
| Quote: | Hi,
I'm creating a domain with the following components. Would they be the best
practice?
DC1 as DNS1, WINS1, DHCP.
DC2 as DNS2, WINS2.
The DC1 IP config for DNS will point to DNS1 as pri and DNS2 as sec, while
WINS point to WINS1 as pri and WINS2 as sec.
The DC2 IP config for DNS will point to DNS2 as pri and DNS1 as sec, while
WINS point to WINS2 as pri and WINS1 sec.
Thnaks
TagaR |
|
|
| Back to top |
|
|
Rebecca Chen [MSFT]
Guest
|
| Posted:
Thu Dec 30, 2004 9:39 am Post subject:
Re: Best Practice |
|
|
Yes,your thoughts make sense. It would be better that both Dc pointed to
the same DNS server so that there is one DNS has the complete DC SRV
record. The second DNS can be use as the backup. :)
Best regards,
Rebecca Chen
MCSE2000 MCDBA CCNA
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights. |
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Thu Dec 30, 2004 12:09 pm Post subject:
Re: Best Practice |
|
|
"Rebecca Chen [MSFT]" <v-rebc@online.microsoft.com> wrote in message
news:BxvzJFi7EHA.768@cpmsftngxa10.phx.gbl...
| Quote: | Yes,your thoughts make sense. It would be better that both Dc pointed to
the same DNS server so that there is one DNS has the complete DC SRV
record. The second DNS can be use as the backup. :)
|
That isn't what I said however....
It's not that it is better for them both to be pointed
at one -- they really both needed to be pointed to
both (more than one) if there are multiple DNS servers.
This is so that the DC doesn't lose resolution if one
DNS service or server is down. (Disregarding that
in some cases the server down means the DC is too.)
Preferably DNS servers should FIRST use themselves
for performance reasons.
This continues if both of them are AD Integrated (except
during early setup until DNS and then AD replication is
assured -- or when it needs to be repaired.)
In theory at least, the Secondaries should be fine for
dynamic clients since there is a referral mechanism (two
as far as I can tell) for sending the updates on to the
Primary (whichever DNS servers can accept updates
dynamically into the DNS database.)
But, some people have reported trouble with such
referrals and so when the DCs are located in the
same LAN or otherwise performance is not an
issue then it seems reasonable to point all but the
Primary DNS-DC server to the actual primary first,
and to themselves second.
In the latter case, if the Primary goes down, then
the DC on the secondary can still use itself for
resolution.
Generally, two DCs with DNS should just both
be Active Directory Integrated and each points
to itself first, the other second.
--
Herb Martin
| Quote: |
Best regards,
Rebecca Chen
MCSE2000 MCDBA CCNA
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no
rights.
|
|
|
| Back to top |
|
|
Rebecca Chen [MSFT]
Guest
|
| Posted:
Tue Jan 04, 2005 4:09 pm Post subject:
Re: Best Practice |
|
|
Hmmmm, both configurations have their own advantages. Officially, we point
to one DNS server.
Please refer to the following article:
Best practices for DNS client settings in Windows 2000 Server and in
Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036
Best regards,
Rebecca Chen
MCSE2000 MCDBA CCNA
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights. |
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Tue Jan 04, 2005 6:54 pm Post subject:
Re: Best Practice |
|
|
"Rebecca Chen [MSFT]" <v-rebc@online.microsoft.com> wrote in message
news:CWGFIWk8EHA.768@cpmsftngxa10.phx.gbl...
That article has several over-simplications.
The article will get a beginner through the process
9 times out of 10 and that is not bad for five (funtional)
paragraphs.
Occasionally Microsoft KB articles get propagated
despite their containing either mistakes or, more
commonly, oversimplifications and recommendations
given out of context (or in some specific but limited
context).
This one is not egregious but it will not offer the best
answers for all domains and it doesn't explain the
recommendations.
Just the other day someone posted in reference to
this article (or one very similar) trying to understand
what was special about the "first DC" -- the article
assumes that the domain has not undergone significant
reconfiguratoin of DC roles and other jobs.
--
Herb Martin
| Quote: | Best regards,
Rebecca Chen
MCSE2000 MCDBA CCNA
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no
rights.
|
|
|
| Back to top |
|
|
Rebecca Chen [MSFT]
Guest
|
| Posted:
Wed Jan 05, 2005 6:58 pm Post subject:
Re: Best Practice |
|
|
Hi Herb,
Both of them have their own advantange. Since both of them are
AD-intergrated, that is not a big deal to point which DC as the first DNS
server. :)
Best regards,
Rebecca Chen
MCSE2000 MCDBA CCNA
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights. |
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in