Dual Homed AD server, how do I remove the NIC2 from DNS/

  • Thread starter Thread starter DavidM
  • Start date Start date
D

DavidM

I have a dual homed W2000 SP3 machine which is both a domain controller and
a DNS server. I am not able to figure out how to control the DNS records
for the 2 NICs. I have unchecked the "register this connection's address in
DNS" entry for the second NIC and deleted its host record in DNS, but it
comes back. I assume that this is an AD related issue. DNS is set up to
answer on both NICs, although I could shut it off on the second NIC and use
host entries, as there are no Windows machines on that network.

Is there any way to either:
1. prevent the second entry from re-occuring
2. force a different name for the "A" record for the second NIC
3. select which address is in the response dependent on what network the
machine is on which makes the request.

Thanks,
David
 
In
DavidM said:
I have a dual homed W2000 SP3 machine which is both a domain
controller and a DNS server. I am not able to figure out how to
control the DNS records for the 2 NICs. I have unchecked the
"register this connection's address in DNS" entry for the second NIC
and deleted its host record in DNS, but it comes back. I assume that
this is an AD related issue. DNS is set up to answer on both NICs,
although I could shut it off on the second NIC and use host entries,
as there are no Windows machines on that network.

Is there any way to either:
1. prevent the second entry from re-occuring
2. force a different name for the "A" record for the second NIC
3. select which address is in the response dependent on what network
the machine is on which makes the request.

Thanks,
David
Click to expand...

Are you needing to only stop the "A" record on the second NIC that has the
host name or the blank record?
To stop the host name record, on the interfaces tab of the properties for
DNS server, enter only the IP you want the record created for. If you want
to stop the blank host records (same as parent folder) that requires a
registry entry.
246804 - How to Enable/Disable Windows 2000 Dynamic DNS Registrations
http://support.microsoft.com/default.aspx?scid=kb;EN-US;246804&FR=1
 
Thanks for the response, please see my question inserted below the relevant
text-


Kevin D. Goodknecht said:
In

Are you needing to only stop the "A" record on the second NIC that has the
host name or the blank record?
To stop the host name record, on the interfaces tab of the properties for
DNS server, enter only the IP you want the record created for.
Click to expand...

Sorry, but I am not sure that I follow, unless you are telling me to set the
DNS server to not respond on the second NIC. Is that what you mean? I'll try
it. Of course, this is a production machine and I cannot just wontonly
reboot the sucker, so I cannot fully test it until 10:00 tonight. If this
does make the second entry go away, I assume that it would also allow me to
manually add an entry for this interface with a different name for the
machines on that LAN to use.
If you want
to stop the blank host records (same as parent folder) that requires a
registry entry.
Click to expand...

To be more clear (hopefully), on all networks that can see this machine
except for the network that the second NIC (say 192.168.120.30/24) is on, I
need the response to DNS queries for this box to point to the address of the
first NIC (192.168.130.30/24).
 
In
DavidM said:
Thanks for the response, please see my question inserted below the
relevant text-




Sorry, but I am not sure that I follow, unless you are telling me to
set the DNS server to not respond on the second NIC. Is that what you
mean? I'll try it. Of course, this is a production machine and I
cannot just wontonly reboot the sucker, so I cannot fully test it
until 10:00 tonight. If this does make the second entry go away, I
assume that it would also allow me to manually add an entry for this
interface with a different name for the machines on that LAN to use.
Click to expand...

Yes, if you go to the DNS server properties, on the interfaces tab set it to
Listen on only the following IP addresses. A reboot is not necessary for
this you can do it on the fly so long as no machines are looking for DNS on
that address.. DNS will only respond on the defined address, if you want DNS
to respond to a different name on that IP then you need a proxy server
listening on that address forwarding to the address DNS is listening on..
 
Kevin D. Goodknecht said:
In

Yes, if you go to the DNS server properties, on the interfaces tab set it to
Listen on only the following IP addresses. A reboot is not necessary for
this you can do it on the fly so long as no machines are looking for DNS on
that address.. DNS will only respond on the defined address, if you want DNS
to respond to a different name on that IP then you need a proxy server
listening on that address forwarding to the address DNS is listening on..
Click to expand...

It looks like I am all set. Thanks for the help!
 
Configure the DNS service to listen on only the internal interface. Remove the check mark to Register this connection's address
in DNS from the external adapter. Clean up the external IPs from DNS. This will prevent them from coming back.

If you are hosting a Internet name and you require DNS to listen on the external adapter, the only other option would be to
disable dynamic updates on the server and manually add the records. For more information please refer to: 294832 How to
Disable Windows 2000 Dynamic Domain Name System Registrations http://support.microsoft.com/?id=294832

Thank you,
Mike Johnston
Microsoft Network Support
--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the
terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from
which they originated.
 
Back
Top