got a question,

  • Thread starter Thread starter Jay
  • Start date Start date
J

Jay

Hey,let say i add another DNS server to my domain,also a another DC,now when
i configure DNS im creating a new zone like child.contoso.com, since my
first DNS would be contoso.com..is this right ? also the _msdc zone i read
something about delegating it to the new DNS ,i dont really understand can
someone put it in real words...i dont understand delegating a file(zone) was
i reading it right....i was reading best practices...im confused about
this...

thanks
Hey,let say i add another DNS server to my domain,also a another DC,now when
i configure DNS im creating a new zone like child.contoso.com, since my
first DNS would be contoso.com..is this right ? also the _msdc zone i read
something about delegating it to the new DNS ,i dont really understand can
someone put it in real words...i dont understand delegating a file(zone) was
i reading it right....i was reading best practices...im confused about
this...

thanks
 
You said another DNS and DC to "your domain" -- this would
NOT be a child of your domain.

If you wish to add a child Zone (DNS) or child Domain then you
would use the sub-domain (child) name.

If you are just "adding a DNS server" you aren't REALLY creating
a "DNS zone" nor are you really "creating a DNS server" in many
cases, more accurate is "you are ADDING a DNS Zone to a DNS
server".

For the first zone you might also be creating the DNS server, or for
the first DNS server OF a zone, you would be actually creating a zone.

Yes, I know that when you perform this function it says, "New Zone"
but after the first DNS server in the zone, it really means "New copy
of a Zone ON THIS SERVER"

If this is your goal: The name must stay the same (as the existing zone
on the Master server you specify.)
 
so im really copying the zone from the first DNS server,but if i added a
child domain i would create a dns server for that child domain correct,also
in that case do i still copy the other zone from the first DNS ...let say my
first domain is mydomain.com then i add a child like house.mydomain.com
,what im asking is in the DNS server that has the house.mydomain.com do i
copy a zone from mydoamin.com so clients could resolve from either side of
the domains,or does this already happen and i dont need to conf a zone....

hope you understand what i was saying..


thanks
 
so im really copying the zone from the first DNS server,but if i added a
child domain i would create a dns server for that child domain
Click to expand...
correct,also

Yes, traditional Unix DNS folks call it "creating a DNS server" while
Microsoft tried to fix/change the terminology to "creating a Zone".

Both are partially correct - - and thereby confusing to new DNS admins.

Think (and say it this way): You are creating a Zone ON a Server.

-- if it's the first zone on that server, you are also setting up or
creating the
DNS server.

-- if it's the first server for THAT zone, you are also creating the zone.
in that case do i still copy the other zone from the first DNS ...let say
Click to expand...
my

No a server for a child zone has NO additional relationship to the parent
zone (unless the server JUST HAPPENS to handle both).

The only relationship between Parent and Child DNS zones is "delegation"
or "glue" records stored ONLY on the parent which point to the child DNS
servers.

KEY CONCEPT in DNS: Never think about more than one zone at a time
(when doing zone configuratin and setup.)

Exceptions: When delegation from the parent, you obviously "think" about
the
child zone and the DNS servers that will resolve those names.

When trouble shooting OTHER people's resolution of your resource you think
about the path from the Root, down through the Parent chain to the child
zone
DNS servers that resolve that zone (note this is really just the public view
of the
previous paragraph.)
first domain is mydomain.com then i add a child like house.mydomain.com
,what im asking is in the DNS server that has the house.mydomain.com do i
Click to expand...

In Windows you just right click and "create new DELEGATION" but what it
does (what appears in the files) is a NS server record for the child zone
which
references the Child DNS server: DNS server == zone mapping.

These "delegation" records are called "glue" records (very nearly a
technical
term, all experienced DNS admins recognize "glue") which 'glue' the DNS
heirarch together from top to bottom, root is glued to .Com, .Com is glued
to
microsoft.com, microsoft.com is glued to msdn.microsoft.com, etc.

copy a zone from mydoamin.com so clients could resolve from either side of
the domains,or does this already happen and i dont need to conf a zone....
Click to expand...

No, the resolutions for PARENT zone is handle by "root hints" which send the
recursive DNS server (the clients use) to the root->top->1st level->child
zones.

There are exceptions to this (in a small network it IS POSSIBLE but not
generally recommended to have ever DNS server hold EVER Zone.)

Note that if ever DNS server holds ever DNS server we are giving up the
scalability advantages of the hierarchy structure -- 1-2 (or a few) zones
this
can work but it is a POOR GENERAL solution.
 
Back
Top