| Author |
Message |
Steve Schofield
Guest
|
 Posted:
Mon Jan 17, 2005 6:13 pm Post subject:
Domain Controller DDNS Questoin |
|
|
I'm looking for some information to understand this better, I come from
using a unix DNS background for AD and this is new to me. Why does each
domain controller register a blank Host or (same as parent folder) A host
record with its own IP address in DNS? For example when I ping my domain
name (SteveSchofield.com) there is a potential of a different IP address for
the same domain name. Are these records necessary?
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support |
|
| Back to top |
|
 |
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Mon Jan 17, 2005 6:13 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
In news:%23$CEC2K$EHA.1404@TK2MSFTNGP11.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
These two articles do not answer your question "Why does each
domain controller register a blank Host or (same as parent folder) A host
record with its own IP address in DNS?"
They tell you how you can stop it but not why they are there.
The reason they are there is to give access to the DFS SYSVOL share by the
domain name \\dnsdomainname\sysvol disabling this record may cause you the
unexpected results of not being able to propagate group policies. All AD
Domain members using Win2k and later OS will get their group policies from
this DFS share at
\\dnsdomainname\SYSVOL\dnsdomainname\policies\<verylongpolicyIDnumber>
If you disable this record this share won't be accessible by this name, if
you change the record to your web server IP then the members will try to
contact the web server for their group policies.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Steve Schofield
Guest
|
| Posted:
Mon Jan 17, 2005 6:13 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
Hi Herb,
Yes I wish people would post the answer more! :) My background in AD is
with integrating with Unix DNS (QIP). AD integrated DNS is a different but
not too much and i"m still learning. The whole reason for this exercise
was this one setting would screw up my WWW site if there were more than one
A record with different IP addresses pointing to the parent domain
(steveschofield.com).
What I ended up doing was putting the registry entry (
RegisterDnsARecords ) on the domain controllers to disable netlogon service
from registering A record types when it is started (4 of them I believe).
Here is the article.
http://www.microsoft.com/resources/documentation/Windows/2000/server/reskit/en-us/Default.asp?url=/resources/documentation/Windows/2000/server/reskit/en-us/regentry/83829.asp
The netlogon.dns file in c:\windows\system32\config\netlogon.dns showed me
the entries being DDNS'd. Then what I did was manually created the
ForestDNSZones, DomainDNSZones and gc._msdcs records The one support
article mandated the GC entry is required if the server was a Global
Catalog, in my case that applied. Very easy concept to understand once I
found all the pieces to the puzzle. Thanks for the tip on the dns clients
and how they use the parent domain. I'm not a huge fan of the dns client
concept provides. This just causes one more place where lookups are cached
but i follow best practices and leave it turned on. my 2 cents.
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Herb Martin" <news@LearnQuick.com> wrote in message
news:ePVEoSL$EHA.2316@TK2MSFTNGP15.phx.gbl...
| Quote: | "Steve Schofield" <steve@deviq.com> wrote in message
news:#$CEC2K$EHA.1404@TK2MSFTNGP11.phx.gbl...
Nevermind I found good articles explaining what i was looking for.
http://support.microsoft.com/default.aspx?scid=kb;en-us;246804
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036&sd=RMVP
Thanks for posting the answer -- even if you had to find
it yourself. If more people did that the newsgroups would
be even better.
--
Herb Martin
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Steve Schofield" <steve@deviq.com> wrote in message
news:eLDiHPK$EHA.3376@TK2MSFTNGP12.phx.gbl...
I'm looking for some information to understand this better, I come
from
using a unix DNS background for AD and this is new to me. Why does
each
domain controller register a blank Host or (same as parent folder) A
host
record with its own IP address in DNS? For example when I ping my
domain
name (SteveSchofield.com) there is a potential of a different IP
address
for
the same domain name. Are these records necessary?
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
|
|
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Mon Jan 17, 2005 6:13 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
"Steve Schofield" <steve@deviq.com> wrote in message
news:#$CEC2K$EHA.1404@TK2MSFTNGP11.phx.gbl...
Thanks for posting the answer -- even if you had to find
it yourself. If more people did that the newsgroups would
be even better.
--
Herb Martin
| Quote: |
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Steve Schofield" <steve@deviq.com> wrote in message
news:eLDiHPK$EHA.3376@TK2MSFTNGP12.phx.gbl...
I'm looking for some information to understand this better, I come from
using a unix DNS background for AD and this is new to me. Why does each
domain controller register a blank Host or (same as parent folder) A
host
record with its own IP address in DNS? For example when I ping my
domain
name (SteveSchofield.com) there is a potential of a different IP address
for
the same domain name. Are these records necessary?
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
|
|
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Mon Jan 17, 2005 6:13 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
"Steve Schofield" <steve@deviq.com> wrote in message
news:eLDiHPK$EHA.3376@TK2MSFTNGP12.phx.gbl...
| Quote: | I'm looking for some information to understand this better, I come from
using a unix DNS background for AD and this is new to me. Why does each
domain controller register a blank Host or (same as parent folder) A host
record with its own IP address in DNS?
|
So that they can "represent" the domain as a whole.
In some cases the DNS clients don't know or care which
DC they contact so the query for the domain name gets
back a list of all such machines.
(There are other cases where this is done by Site, but
that is a separate case.)
| Quote: | For example when I ping my domain
name (SteveSchofield.com) there is a potential of a different IP address
for
the same domain name.
|
Yes, and that is perfectly normal with multiple records
for any name (common with WWW, SMTP etc.)
| Quote: | Are these records necessary?
|
Yes.
--
Herb Martin
| Quote: |
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
|
|
|
| Back to top |
|
|
Steve Schofield
Guest
|
| Posted:
Mon Jan 17, 2005 6:13 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
Nevermind I found good articles explaining what i was looking for.
http://support.microsoft.com/default.aspx?scid=kb;en-us;246804
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036&sd=RMVP
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Steve Schofield" <steve@deviq.com> wrote in message
news:eLDiHPK$EHA.3376@TK2MSFTNGP12.phx.gbl...
| Quote: | I'm looking for some information to understand this better, I come from
using a unix DNS background for AD and this is new to me. Why does each
domain controller register a blank Host or (same as parent folder) A host
record with its own IP address in DNS? For example when I ping my domain
name (SteveSchofield.com) there is a potential of a different IP address
for
the same domain name. Are these records necessary?
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
|
|
|
| Back to top |
|
|
Steve Schofield
Guest
|
| Posted:
Mon Jan 17, 2005 7:24 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
Thanks for the information, I'm just trying to automate as much of this as I
can and limit administration. Thanks again for the information, it helped
me determine what i needed to do.
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:#qA#BaM$EHA.1264@TK2MSFTNGP12.phx.gbl...
| Quote: | In news:O2E%239PM$EHA.3700@tk2msftngp13.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
Personally I like the option to have the internal DNS
server transfer to an internet facing DNS server w/o
having to manually maintain both sides of the firewall.
Is there a way w/o having to script it to take advantage
of the notify to secondary servers and have it just
forward specific records?
Unfortunately, you would have maintain both zones because inside the
firewall private IPs are used and outside the firewall public IPs are used
there for using the same zone data is not possible.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Steve Schofield
Guest
|
| Posted:
Mon Jan 17, 2005 7:24 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
It does tell me however how to turn it off, not what it would break.
Thanks for the info..
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:eQQn91L$EHA.2016@TK2MSFTNGP15.phx.gbl...
| Quote: | In news:%23$CEC2K$EHA.1404@TK2MSFTNGP11.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
Nevermind I found good articles explaining what i was
looking for.
http://support.microsoft.com/default.aspx?scid=kb;en-us;246804
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036&sd=RMVP
These two articles do not answer your question "Why does each
domain controller register a blank Host or (same as parent folder) A host
record with its own IP address in DNS?"
They tell you how you can stop it but not why they are there.
The reason they are there is to give access to the DFS SYSVOL share by the
domain name \\dnsdomainname\sysvol disabling this record may cause you the
unexpected results of not being able to propagate group policies. All AD
Domain members using Win2k and later OS will get their group policies from
this DFS share at
\\dnsdomainname\SYSVOL\dnsdomainname\policies\<verylongpolicyIDnumber
If you disable this record this share won't be accessible by this name, if
you change the record to your web server IP then the members will try to
contact the web server for their group policies.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Mon Jan 17, 2005 7:24 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
In news:O2E%239PM$EHA.3700@tk2msftngp13.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
| Quote: | Personally I like the option to have the internal DNS
server transfer to an internet facing DNS server w/o
having to manually maintain both sides of the firewall.
Is there a way w/o having to script it to take advantage
of the notify to secondary servers and have it just
forward specific records?
|
Unfortunately, you would have maintain both zones because inside the
firewall private IPs are used and outside the firewall public IPs are used
there for using the same zone data is not possible.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Mon Jan 17, 2005 7:24 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
In news:e0oL6RM$EHA.3908@TK2MSFTNGP12.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
| Quote: | It does tell me however how to turn it off, not what it
would break. Thanks for the info..
|
The main reason why you would stop DDNS registration is to keep the DC from
logging errors in the event log when using a DNS that doesn't support DDNS
or if Dynamic registration is disabled on the zone. e.g. if you run your AD
zone on a BIND which doesn't support Microsoft's version of Secure dynamic
updates and have dynamic updates disallowed on the BIND.
In that case, you will need to manually create and maintain the DCs records.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Steve Schofield
Guest
|
| Posted:
Mon Jan 17, 2005 7:24 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
Personally I like the option to have the internal DNS server transfer to an
internet facing DNS server w/o having to manually maintain both sides of the
firewall. Is there a way w/o having to script it to take advantage of the
notify to secondary servers and have it just forward specific records?
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:eQQn91L$EHA.2016@TK2MSFTNGP15.phx.gbl...
| Quote: | In news:%23$CEC2K$EHA.1404@TK2MSFTNGP11.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
Nevermind I found good articles explaining what i was
looking for.
http://support.microsoft.com/default.aspx?scid=kb;en-us;246804
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036&sd=RMVP
These two articles do not answer your question "Why does each
domain controller register a blank Host or (same as parent folder) A host
record with its own IP address in DNS?"
They tell you how you can stop it but not why they are there.
The reason they are there is to give access to the DFS SYSVOL share by the
domain name \\dnsdomainname\sysvol disabling this record may cause you the
unexpected results of not being able to propagate group policies. All AD
Domain members using Win2k and later OS will get their group policies from
this DFS share at
\\dnsdomainname\SYSVOL\dnsdomainname\policies\<verylongpolicyIDnumber
If you disable this record this share won't be accessible by this name, if
you change the record to your web server IP then the members will try to
contact the web server for their group policies.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Tue Jan 18, 2005 4:45 am Post subject:
Re: Domain Controller DDNS Questoin |
|
|
"Steve Schofield" <steve@deviq.com> wrote in message
news:OBa6OgM$EHA.3368@TK2MSFTNGP10.phx.gbl...
| Quote: | Thanks for the information, I'm just trying to automate as much of this as
I
can and limit administration. Thanks again for the information, it helped
me determine what i needed to do.
|
When you have the same Zone/Domain name internally
and externally you have (already) pretty much committed
to using "Shadow DNS" which is really two separate
zones using the same name.
--
Herb Martin
"Steve Schofield" <steve@deviq.com> wrote in message
news:OBa6OgM$EHA.3368@TK2MSFTNGP10.phx.gbl...
| Quote: | Thanks for the information, I'm just trying to automate as much of this as
I
can and limit administration. Thanks again for the information, it helped
me determine what i needed to do.
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:#qA#BaM$EHA.1264@TK2MSFTNGP12.phx.gbl...
In news:O2E%239PM$EHA.3700@tk2msftngp13.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
Personally I like the option to have the internal DNS
server transfer to an internet facing DNS server w/o
having to manually maintain both sides of the firewall.
Is there a way w/o having to script it to take advantage
of the notify to secondary servers and have it just
forward specific records?
Unfortunately, you would have maintain both zones because inside the
firewall private IPs are used and outside the firewall public IPs are
used
there for using the same zone data is not possible.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Steve Schofield
Guest
|
| Posted:
Tue Jan 18, 2005 7:09 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
It would be handy to limit which record types get forwarded to secondary's.
Ole manual and/or scripting is my only other option. I learned a lot in
this thread thanks everyone.
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Herb Martin" <news@LearnQuick.com> wrote in message
news:#8DzMeO$EHA.4092@TK2MSFTNGP09.phx.gbl...
| Quote: | "Steve Schofield" <steve@deviq.com> wrote in message
news:OBa6OgM$EHA.3368@TK2MSFTNGP10.phx.gbl...
Thanks for the information, I'm just trying to automate as much of this
as
I
can and limit administration. Thanks again for the information, it
helped
me determine what i needed to do.
When you have the same Zone/Domain name internally
and externally you have (already) pretty much committed
to using "Shadow DNS" which is really two separate
zones using the same name.
--
Herb Martin
"Steve Schofield" <steve@deviq.com> wrote in message
news:OBa6OgM$EHA.3368@TK2MSFTNGP10.phx.gbl...
Thanks for the information, I'm just trying to automate as much of this
as
I
can and limit administration. Thanks again for the information, it
helped
me determine what i needed to do.
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:#qA#BaM$EHA.1264@TK2MSFTNGP12.phx.gbl...
In news:O2E%239PM$EHA.3700@tk2msftngp13.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
Personally I like the option to have the internal DNS
server transfer to an internet facing DNS server w/o
having to manually maintain both sides of the firewall.
Is there a way w/o having to script it to take advantage
of the notify to secondary servers and have it just
forward specific records?
Unfortunately, you would have maintain both zones because inside the
firewall private IPs are used and outside the firewall public IPs are
used
there for using the same zone data is not possible.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Tue Jan 18, 2005 9:06 pm Post subject:
Re: Domain Controller DDNS Questoin |
|
|
"Steve Schofield" <steve@deviq.com> wrote in message
news:uyWZG8V$EHA.3376@TK2MSFTNGP12.phx.gbl...
| Quote: | It would be handy to limit which record types get forwarded to
secondary's.
Ole manual and/or scripting is my only other option. I learned a lot in
this thread thanks everyone.
|
It is not practical - you would have to write you on
DNS server.
--
Herb Martin
| Quote: |
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Herb Martin" <news@LearnQuick.com> wrote in message
news:#8DzMeO$EHA.4092@TK2MSFTNGP09.phx.gbl...
"Steve Schofield" <steve@deviq.com> wrote in message
news:OBa6OgM$EHA.3368@TK2MSFTNGP10.phx.gbl...
Thanks for the information, I'm just trying to automate as much of
this
as
I
can and limit administration. Thanks again for the information, it
helped
me determine what i needed to do.
When you have the same Zone/Domain name internally
and externally you have (already) pretty much committed
to using "Shadow DNS" which is really two separate
zones using the same name.
--
Herb Martin
"Steve Schofield" <steve@deviq.com> wrote in message
news:OBa6OgM$EHA.3368@TK2MSFTNGP10.phx.gbl...
Thanks for the information, I'm just trying to automate as much of
this
as
I
can and limit administration. Thanks again for the information, it
helped
me determine what i needed to do.
--
Thank you,
Steve Schofield
Microsoft MVP - ASP/ASP.NET
ASPInsider Member - MCP
http://www.orcsweb.com/
Powerful Web Hosting Solutions
#1 in Service and Support
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in
message
news:#qA#BaM$EHA.1264@TK2MSFTNGP12.phx.gbl...
In news:O2E%239PM$EHA.3700@tk2msftngp13.phx.gbl,
Steve Schofield <steve@deviq.com> commented
Then Kevin replied below:
Personally I like the option to have the internal DNS
server transfer to an internet facing DNS server w/o
having to manually maintain both sides of the firewall.
Is there a way w/o having to script it to take advantage
of the notify to secondary servers and have it just
forward specific records?
Unfortunately, you would have maintain both zones because inside the
firewall private IPs are used and outside the firewall public IPs
are
used
there for using the same zone data is not possible.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in