delegation Zone

  • Thread starter Thread starter Ruben
  • Start date Start date
R

Ruben

Hello,

I created a delegation zone for a child domain on the parent sever. I want
to create a Host RR "glue record" to point back to the child domain. How
can this been done? and where do you ceate the glue record.


Thnaks
 
In
Ruben said:
Hello,

I created a delegation zone for a child domain on the parent sever.
I want to create a Host RR "glue record" to point back to the child
domain. How can this been done? and where do you ceate the glue
record.


Thnaks
Click to expand...

Create a forward lookup zone with the FQDN of the child DNS server, i.e.
childserver.childdomain.domain.com, then create a blank host with the IP
address of the child server in the zone.
 
Do you still need the delgation zone (Gray folder) under the the Parent
forward lookup Zone ?
 
In
Ruben said:
Do you still need the delgation zone (Gray folder) under the the
Parent forward lookup Zone ?
Click to expand...
Yes, you only created a glue record for the DNS server, the Delegation
contains a NS record that tells all queries for the name what DNS server can
answer authoritatively for the child domain.
 
In
Kevin D. Goodknecht said:
In
Yes, you only created a glue record for the DNS server, the Delegation
contains a NS record that tells all queries for the name what DNS
server can answer authoritatively for the child domain.



--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
============================
Click to expand...

Why not just configure a forwarder to the parent as usual with delegation?

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
No need to create separately for glue records, the
Delegation Wizard will take care of that for you when you
create the delegation.

However, you need to update the glue records in the gray
folder, when servers change. Right click and then go to
Properties.

Only when the delegated servers' A records are in the
delegated zone, you need to create glue records.
 
okay,

How can we verify that the delegation zone is setup correctly? Is there an
NSLookup command that I can use?



Thanks Ruben
 
In
Ruben said:
okay,

How can we verify that the delegation zone is setup correctly? Is
there an NSLookup command that I can use?



Thanks Ruben
Click to expand...

If you can use nslookup from a client in the child zone to query the parent
zone, and from a client in the parent zone to the child zone, then it's
pretty much working.

from child:
nslookup
ls -t parent.com

from parent:
ls -t child.parent.com

You have to enable zone transfers on the zone for that specific command to
work.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
use the delegating server to look up the ns records, if
you got all the name servers of that zone and the ttls in
two consecutive look ups do not decrease..then you can
say you have created a good delegation
 
Still having problems. I'm lost a seraching for answers

Question: Does the root dns need to all zone transfers for the delegation to
work. child domain has a primary and secondary dns setup on two different
servers.
 
In
Ruben said:
Still having problems. I'm lost a seraching for answers

Question: Does the root dns need to all zone transfers for the
delegation to work. child domain has a primary and secondary dns
setup on two different servers.
Click to expand...


Basically to create a delegation, you rt-click your parent domain name in
the parent DNS server. If it's called domain.com, then rt-click on it and
choose new delegation. Then type in the child domain;s name, such as child1.
Then in the bottom of the wizard it will show it prefixing the name, such as
child1.domain.com. Then in the next screen type in the IP address of the DNS
server that will host the child zone in the child domain. Make absolutely
sure that the child1.domain.com DOES NOT EXIST as a separate zone in the
parent DNS. If done properly, it will show up as a grayed out folder UNDER
the domain.com zone. If you click on it, the only thing that will show up is
the nameserver name and IP of the child DNS server.

Then in the child DNS server, configure a forwarder to the parent DNS
server.

That's it!

You can take this a step further and configure a forwarder from the parent
DNS to your ISP's DNS for internet resolution.

If you have another child, such as child2.domain.com, and configured in the
same fashion as above, then you will have forest wide resolution. If a
client in child1.doman.com needs to access something by FQDN in
child2.domain.com, the query is sent to it's respective DNS, it won;t have
the answer, so then it's forwarded to the parent, but the parent doesn't
have the answer either, but it does have a reference to who does (due to the
delegation), then the request is sent to the child2.domain.com's DNS server.

To access the resource by a computer's NetBIOS name, then we'll need to
configure mutliple search suffixes on each client so it will append the
proper suffix for the query. There are scripts to help do this.

Delegation is outlined right here:

255248 - HOW TO Create a Child Domain in Active Directory and Delegate the
DNS Namespace to the Child Domain:
http://support.microsoft.com/?id=255248

(Delegation and Forwarding) - Directing queries through forwarders and
delegation:
http://www.microsoft.com/technet/tr...DNS_imp_DirectingQueriesThroughForwarders.asp

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Back
Top