Disable SOA and NS Updating

J

jwr4

I have AD integrated zones - I'd like to completely disable the servers from
updating NS and SOA records. The servers are multi-homed, and I don't want
private addresses showing up in my zones. Been trying to accomplish this for
3 years now without success.

I'm not reconfiguring my network, I like the AD integrated zones, and use
the private network primarily for backup and administration. The boxes
provide ONLY DNS to the outside world.

John Roche
 
K

Kevin D. Goodknecht Sr. [MVP]

In
jwr4 said:
I have AD integrated zones - I'd like to completely disable the
servers from updating NS and SOA records. The servers are
multi-homed, and I don't want private addresses showing up in my
zones. Been trying to accomplish this for 3 years now without success.

I'm not reconfiguring my network, I like the AD integrated zones, and
use the private network primarily for backup and administration. The
boxes provide ONLY DNS to the outside world.

John Roche
Click to expand...

AD integrated zone will always use the actual machine name for SOA and NS
records, there is no way around this and still use AD integration.
If this causes problems with using illegal names in a public zone the you
should use Standard primary zones. Of course this will cause problem if the
public domain name is tha same name as the private domain name. You will
need the seperate this by using at least two DNS servers, one for private
access only and one for public access only. You cannot use Win2k DNS for
both public and private on the same server, Win2k3(IIRC) can do this but
Win2k cannot.
 
M

Michael Johnston [MSFT]

John,
Please reference 246804 How to Enable/Disable Windows 2000 Dynamic DNS Registrations http://support.microsoft.com/?id=246804. Follow the section
titled "Netlogon Service (Domain Controller Only)". We don't recommend this setting but it should accomplish your goal.

Thank you,
Mike Johnston[MSFT]
Microsoft Network Support


--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from which they originated.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

SOA, NS issues 9
delegation question 4
Hidden Master DNS advice 2
DNS Weirdness 1
IP address associated with the given NS record cannot be found --- Pri DNS + VPN server 23
What is the NS1 and NS2 all about when Registering a FQDN with Network Solutions? 2
Registration of the DNS record _ldap._tcp.pdc._msdcs Failed 3
dnscmd to remove then add NS records 6

Top