Kevin D. Goodknecht Sr. [
Guest
|
 Posted:
Tue Jan 18, 2005 8:19 pm Post subject:
Re: DNS Domain Name resolution. |
|
|
In news:71E132AB-4417-40F8-A5B8-22AE0EFEE2F4@microsoft.com,
Morag <Morag@discussions.microsoft.com> commented
Then Kevin replied below:
| Quote: | Can anyone tell me what result I should expect if I ping
mydomain.co.uk - the IP address of any DC in the AD or
specifically the IP address of the DC that is the PDC
Emulator (Global Catalog/Bridgehead server at central
site - I am located at the central site).
|
You first have to understand what the Record is for, it allows you to
connect to the domain DFS share at \\dnsdomainname\sysvol once the
connection is made to the DFS share the client receives a list of servers
holding the share and then connects to the first server to respond.
If you want to check which server you are connected to at this share use
Explorer to connect to the share at \\dnsdomainname\SYSVOL then right click
in the Explorer window an choose properties. Select the Dfs Tab, you will
see a list of paths the one that is marked "Yes" in the Active column is the
DC the DFS client is connected to. To test your connection to the other
servers select the server in the list, click Apply and refresh the window.
You will see a folder named with the DNS domain name, inside that folder is
the policies folder where clients get their group polices from. The policies
will have a 32 digit ID number and are applied according to Organizational
unit membership. By default there are two group policies created, one is the
Default domain policy, the other is the Domain Controller group policy. You
can create additional GPOs for all OUs in the domain.
This is why you should not change the behavior for DCs to create the "A"
record (same as parent folder) for each DC to say the IP of the web server
that hosts your website. If you do the Member clients will try to connect to
the Web server to receive the list of servers with the Dfs Share, and of
course it won't find the Dfs share which causes client to log Userenv errors
in the event log and failure to get its list of GPOs.
Sorry for the long explanation, but there is not a simple answer that can
fully make people understand why they cannot change this record to their
website address. I understand that this wasn't your question, I decided to
answer based on the many questions asked on this behavior.
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in