AD integrated DNS replication between root and sub domain

  • Thread starter Thread starter Malik
  • Start date Start date
M

Malik

I have an AD root domain e.g a.com and AD sub domain e.g
b.a.com.

I have ad integrated DNS servers in both a.com and b.a.com.
Now if I manually add host.a.com in a.com DNS server then
it is only replicated within a.com DNS servers. And if I
manually add host.b.a.com in DNS server that belongs to
b.a.com, then it only appears on DNS servers in b.a.com. I
guess AD is same for all servers then why DNS behaviour is
like that.

I want DNS servers in a.com to also have records for
b.a.com and vice versa.

Thanks.
 
In
Malik said:
I have an AD root domain e.g a.com and AD sub domain e.g
b.a.com.

I have ad integrated DNS servers in both a.com and b.a.com.
Now if I manually add host.a.com in a.com DNS server then
it is only replicated within a.com DNS servers. And if I
manually add host.b.a.com in DNS server that belongs to
b.a.com, then it only appears on DNS servers in b.a.com. I
guess AD is same for all servers then why DNS behaviour is
like that.

I want DNS servers in a.com to also have records for
b.a.com and vice versa.

Thanks.
Click to expand...

Hi Malik,

This is be default and by design in W2k. If you have W2k3, you can opt to
replicate that zone data to other domains by using a new feature in W2k3
called an "application partition".

In W2k, the AD database is broken down into 3 logical partitions:

DomainNC
Config Container
Schema Container

W2k AD Integrated zones are stored in the DomainNC. The Config and Schema
containers are replicated to ALL DCs in a forest. The DomainNC is ONLY
replicated between DCs in the domain they belong in and not to any others.

You can view these partitions using the ADSI Edit tool that is part of the
WIndows 2000 Support Tools located on your CDROM. Just install it, goto
programs/Windows Support Tools and choose ADSI Edit. When it opens, you can
see the 3 there. If you drill down in the DomainNC you can see the zone. You
won't find the zone in the other two partitions.

If you have a parent/child relationship going on here with W2k, it's
recommended to use Delegation. From the parent DNS, delegate the child zone
to the Child domain's DNS server. Then in the child domain DNS server,
configure a forwarder to the parent DNS server ONLY. THen in the parent DNS
server, configure a forwarder to your ISP.

Here's more info on delegation:
255248 - HOW TO Create a Child Domain in Active Directory and Delegate the
DNS Namespace to the Child Domain:
http://support.microsoft.com/?id=255248

Hope that helps.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Back
Top