DNS w/AD

  • Thread starter Thread starter John Doe
  • Start date Start date
J

John Doe

I need some help figuring out a AD/DNS setup.

This is currently the only AD/DC on the network. It functions are AD/DC,
DNS, IIS, WINS, DHCP (ya it has alot to do ;). This box provides DNS for
both internal and external name resolution (meaning register points to this
box as the domains name server which in turns resolves the address back to
this box which also hosts the website). Now everything has functioned fine
for a few years with this setup and no problems, however the server is in
bad need of upgrades so its time to take it down. I attempted to bring up a
second AD/DC inside the network with hopes of replicating everything prior
to shutting down the main box. The secondary server was brought up using
dcpromo without a hitch. However now external clients trying to reach our
website are not able to get a response from the DNS server due to the server
showing two different servers as the SOA for the domain. This is true but I
need this to be transparent to the outside world. Its been a long day and I
need a new set of eyes.
 
In
John Doe said:
I need some help figuring out a AD/DNS setup.

This is currently the only AD/DC on the network. It functions are
AD/DC, DNS, IIS, WINS, DHCP (ya it has alot to do ;). This box
provides DNS for both internal and external name resolution (meaning
register points to this box as the domains name server which in turns
resolves the address back to this box which also hosts the website).
Now everything has functioned fine for a few years with this setup
and no problems, however the server is in bad need of upgrades so its
time to take it down. I attempted to bring up a second AD/DC inside
the network with hopes of replicating everything prior to shutting
down the main box. The secondary server was brought up using dcpromo
without a hitch. However now external clients trying to reach our
website are not able to get a response from the DNS server due to the
server showing two different servers as the SOA for the domain. This
is true but I need this to be transparent to the outside world. Its
been a long day and I need a new set of eyes.
Click to expand...

You'll need a totally separate DNS server for your public records. If
hosting public and private AD data, you'll have issues, as you're
experiencing.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Back
Top