Forwarders

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have a couple of issues going on.

I am working on a network which has the IPSs DNS servers listed on the name
server tab on the forward lookup zones. The DC is able to resolve websites.
When I take the DNS servers out of the Name Server listing and add them as
forwaders I lose internet on the DC as well as across the network. I am at a
loss to explain why.

I have two forward DNS zones. One zone appears to be normal with subfolders
listed such as _msdcs _sites etc. The second zone does not which tells me
that I need to reset the DNS. I need to know the procedure to allow active
directory to rebuild the zone properly.

I also need to know about recursive and if it is recommended to have on or
off.
 
jjarmel said:
I have a couple of issues going on.

I am working on a network which has the IPSs DNS servers listed on the
name
server tab on the forward lookup zones.
Click to expand...

Of the DNS Server console, right?
The DC is able to resolve websites.
When I take the DNS servers out of the Name Server listing and add them as
forwaders I lose internet on the DC as well as across the network. I am
at a
loss to explain why.
Click to expand...

If those other DNS servers cannot resolve Internet names this makes
perfect sense, and why would you wish to forward to internal Server
anyway, unless they are for "other zones" inside a multi-domain environment?
I have two forward DNS zones. One zone appears to be normal with
subfolders
listed such as _msdcs _sites etc. The second zone does not which tells
me
that I need to reset the DNS.
Click to expand...

What is the PURPOSE of the "second zone"? Who put it there? What is its
name (in relation to your "AD Support Zone")?

Might be perfectly normal.
I need to know the procedure to allow active
directory to rebuild the zone properly.
Click to expand...

Unless it is for an AD Domain it is likely just fine.

Is it for an AD domain?
I also need to know about recursive and if it is recommended to have on or
off.
Click to expand...

Normally you should let the INTERNAL DNS Server FORWARD to the
DNS server at your ISP or at your Firewall/Gateway to the Internet.

If you do this is is normal to CHECK "Do not use recursion" on the
Forwarding
tab of the INTERNAL DNS Servers -- this will make them totally dependent
on the reliability of the Forwarders (ISP or Gateway) but if those are
reliable then
this is the most secure and more efficient way to do it.
 
Back
Top