Microsoft DNS on DC with multiple network cards

  • Thread starter Thread starter ZZT
  • Start date Start date
Z

ZZT

Hello everybody,

I have a DNS configured on a Win2k Advanced Server that acts as domain
controller too. The server has 2 network cards. A productive and a
backup card. The backup network is isolated without any gateways and is
for connecting tape backup.
By default when I try to resolve the domain name I get returned the IPs
of both NICs but only want to return the IP of the productive card. Is
there a way to prevent that the IP of the backup-card is returned from
DNS for domain-name?

Thanks & Regards
 
In ZZT <[email protected]> posted a question
Then Kevin replied below:
: Hello everybody,
:
: I have a DNS configured on a Win2k Advanced Server that acts as domain
: controller too. The server has 2 network cards. A productive and a
: backup card. The backup network is isolated without any gateways and
: is for connecting tape backup.
: By default when I try to resolve the domain name I get returned the
: IPs of both NICs but only want to return the IP of the productive
: card. Is there a way to prevent that the IP of the backup-card is
: returned from DNS for domain-name?
:
: Thanks & Regards

Multihomed DCs do require a little extra setup, the first thing you need to
do is bring up the DNS server properties using the DNS console. On the
Interfaces tab select Listen Only on the following IP addresses, then enter
the IP of the Productive NIC. This will prevent the Host with the DCs name.

Second you have to stop the creation of the (same as parent folder) "A" in
the domain zone AND the (same as parent folder) Global Catalog Record
(gc._msdcs.example.com) this requires a registry entry, then you MUST create
both these records manually for the IP of the produtive NIC.
Below is the registry entry you must use regedt32 to make these entries.
copy and paste between the lines, do not include the lines.
----------------------------------------------------------------------------
-------------------------------
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters

Registry value: DnsAvoidRegisterRecords
Data type: REG_MULTI_SZ

LdapIpAddress
GcIpAddress
----------------------------------------------------------------------------
---------------------------------

After you make this you must create the two records, one in the the
'example.com' then expand _msdcs and open the gc subfolder. you create these
by leaving the host name field blank, give them the IP of your NIC.

If you want you can copy the above reg entry to a text file do 'save as' and
name it 'ldapfix.reg' then double click the file to enter it to the
registry. There is a KB about this if you want to look it up.
 
Back
Top