Disable SOA and NS Updating

  • Thread starter Thread starter jwr4
  • Start date Start date
J

jwr4

I have AD integrated zones - I'd like to completely disable the servers from
updating NS and SOA records. The servers are multi-homed, and I don't want
private addresses showing up in my zones. Been trying to accomplish this for
3 years now without success.

I'm not reconfiguring my network, I like the AD integrated zones, and use
the private network primarily for backup and administration. The boxes
provide ONLY DNS to the outside world.

John Roche
 
In
jwr4 said:
I have AD integrated zones - I'd like to completely disable the
servers from updating NS and SOA records. The servers are
multi-homed, and I don't want private addresses showing up in my
zones. Been trying to accomplish this for 3 years now without success.

I'm not reconfiguring my network, I like the AD integrated zones, and
use the private network primarily for backup and administration. The
boxes provide ONLY DNS to the outside world.

John Roche
Click to expand...

AD integrated zone will always use the actual machine name for SOA and NS
records, there is no way around this and still use AD integration.
If this causes problems with using illegal names in a public zone the you
should use Standard primary zones. Of course this will cause problem if the
public domain name is tha same name as the private domain name. You will
need the seperate this by using at least two DNS servers, one for private
access only and one for public access only. You cannot use Win2k DNS for
both public and private on the same server, Win2k3(IIRC) can do this but
Win2k cannot.
 
John,
Please reference 246804 How to Enable/Disable Windows 2000 Dynamic DNS Registrations http://support.microsoft.com/?id=246804. Follow the section
titled "Netlogon Service (Domain Controller Only)". We don't recommend this setting but it should accomplish your goal.

Thank you,
Mike Johnston[MSFT]
Microsoft Network Support


--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from which they originated.
 
Back
Top