Where is the Resource Record kept?

[Jim in Arizona]

Where is the DNS resource record kept on a windows 2000 server? It should be
just a plain ol' text file right? I looked in %systemroot%/system32/dns but
I didn't see it there.

Thanks.

 

[Deji Akomolafe]

It will not be there IF the zone is AD-integrated. Convert the zone to
Standard and update the server data file, and you should see it.

--
Sincerely,

Dèjì Akómöláfé, MCSE MCSA MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know IT
www.akomolafe.com
Do you now realize that Today is the Tomorrow you were worried about
Yesterday? -anon

 

[Jim in Arizona]

Perhaps I should ask the right question:

What I wanted to do is print out the resource list. Our DNS is AD Integrated
and I don't plan on de-integrating it. All I need to do is print out the
list of A records from our single zone. I can't do this within the DNS MMC
snap-in. Any Ideas, without becoming a carpenter?

Thanks!

 

[Ace Fekay [MVP]]

In

Perhaps I should ask the right question:

What I wanted to do is print out the resource list. Our DNS is AD
Integrated and I don't plan on de-integrating it. All I need to do is
print out the list of A records from our single zone. I can't do this
within the DNS MMC snap-in. Any Ideas, without becoming a carpenter?


Thanks!

You can use dnscmd to enumerate your zones and records. That tool is found
in the Windows 2000 Support Tools.

dnscmd /enumrecords

Run dnscmd /? to get all the possible options. Here's more info:

286041 - How to use Dnscmd.exe to Extract Information from Active Directory
Integrated DNS Zones:
http://support.microsoft.com/default.aspx?scid=kb;en-us;286041

You can also use DNSDump by Dean Wells, found at:
www.reskit.com/scripts

And you won't need a 12" sliding chop saw with laser !!



--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.

 

[Kevin D. Goodknecht Sr. [MVP]]

In Then Kevin replied below:

I can't do this within the DNS MMC

snap-in. Any Ideas, without becoming a carpenter?

Oh, but you can, right click on the zone, select export list.

 

[Jonathan de Boyne Pollard]

JiA> Where is the DNS resource record kept on a windows 2000 server?

"Where are telephone directories kept in houses?"

JiA> It should be just a plain ol' text file right?

Wrong. Microsoft's DNS server is capable of using more than one DNS
database storage mechanism.

 

[William Stacey [MVP]]

You can also just use something like dig or nslookup and do an axfr query to
get all the data and strip out all but the A records

C:\>dig test.com axfr > test.com.zone.txt

notepad test.com.zone.txt

etc..

 

[Jim in Arizona]

I actually couldn't use 'Export List'. I was using the administrative tools
that I had installed on a WinXP Pro machine on my network using a
non-administrative account. Although I had full delegated control over the
domain, I didn't see that option using the tools on the workstation. I
terminaled into the domain controller/DNS server and within DNS manager
there I was able to see and use the 'Export List' option.

Thanks Kevin.

Jim

 

[Jim in Arizona]

I have never heard of 'dig'. Although I've used nslookup on occasion, I am
not familiar with it enogh to query it for specifics and direct the output
to a file. I'll have to work on that.

Thanks William.

Jim

 

[Deji Akomolafe]

I still don't understand why you don't simply convert the zone, update the
server data file, which will write it to a file, then convert your zone back
to AD-int. It breaks nothing.

What are you afraid of?

--
Sincerely,

Dèjì Akómöláfé, MCSE MCSA MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know IT
www.akomolafe.com
Do you now realize that Today is the Tomorrow you were worried about
Yesterday? -anon

 

[William Stacey [MVP]]

Once you learn it, you will not use nslookup or other. I have built a dos
and gui version for windows called NetDig. It requires Framework 1.1
installed to use and is free. www.mvptools.com.

 

[Ace Fekay [MVP]]

In

Once you learn it, you will not use nslookup or other. I have built
a dos and gui version for windows called NetDig. It requires
Framework 1.1 installed to use and is free. www.mvptools.com.

And must say it's a great tool!

As for Jim, I think it would be easier at this point in time to just use
dnscmd to grab the records, AD Integrated or not.

btw- Jim, Dig is found by downloading and installing BIND from www.isc.org.
Just use the Dig tool out of the folder.

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.

 

[Jim in Arizona]

Hi Deji.

The first reason is because I really don't know enough about DNS or AD to
comfortably pull something like that off. I'm still reading books on the
subject.

The second reason, and most important reason, is because my IT director and
his right hand employee would never go for a change like that because they
know even less than I do. You know, office politics.

I will look into your suggestion by experimenting on my home network.

Thanks Deji.

Jim

 

[Jim in Arizona]

Thanks William and Ace. I will definately take a look at these tools to see
how I can put them to use!

Thanks for the help. It's greatley appreciated!

Jim


"Ace Fekay [MVP]"

 

[Ace Fekay [MVP]]

In

Hi Deji.

The first reason is because I really don't know enough about DNS or
AD to comfortably pull something like that off. I'm still reading
books on the subject.

The second reason, and most important reason, is because my IT
director and his right hand employee would never go for a change like
that because they know even less than I do. You know, office
politics.

I will look into your suggestion by experimenting on my home network.

Thanks Deji.

Jim

Jim, there's really nothing to changing the zone type. You are just telling
it to store it in some other location.

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.

 

[Ace Fekay [MVP]]

In

Thanks William and Ace. I will definately take a look at these tools
to see how I can put them to use!

Thanks for the help. It's greatley appreciated!

Jim

I hope it helps out!!


--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.