Deji, Ulf, All,
Good article - thanks. Also thanks to Ulf - that was a much better solution and
much better idea than mine. I do not profess to be a DNS legend, but am
continuing to learn...
themolk.
________________________________
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Akomolafe, Deji
Sent: Wednesday, 24 January 2007 8:42 AM
To: [email protected]
Subject: RE: RE : RE: [ActiveDir] Question about DNS SRV registration.
I would not recommend that you do this. Please read the document I
referenced in my previous response. Also, see Ulf's brief
description/explanation of the behavior that you are seeing. I really recommend
that you try to understand what is going on here.
Sincerely,
_____
(, / | /) /) /)
/---| (/_ ______ ___// _ // _
) / |_/(__(_) // (_(_)(/_(_(_/(__(/_
(_/ /)
(/
Microsoft MVP - Directory Services
www.akomolafe.com <x-excid://32770000/uri:http://www.akomolafe.com> -
we know IT
-5.75, -3.23
Do you now realize that Today is the Tomorrow you were worried about
Yesterday? -anon
________________________________
From: Yann
Sent: Tue 1/23/2007 2:16 PM
To: [email protected]
Subject: RE : RE: [ActiveDir] Question about DNS SRV registration.
Steve,
Thanks for fast reply;
My example is the reflect of what i had in real production.
So in my production, i have about 15 sites AD and we are in the process
of migration (adding more sites).
So you mean that i have to create 15 child dns domain and set each DCs
in each site authoriatative for their respective child domain ?
It seems to be a lot of work ... but i will follow into your direction.
Thanks again,
Yann
"Molkentin, Steve" <[EMAIL PROTECTED]> a écrit :
Yann,
Create a child DNS domain for the site containing DCb, and
establish DCb as the authoritative server for that domain. If you have
resources in Sitea you'll then need to ensure there is a forwarder set up for
resolution, etc. Remember that separate DNS domains can exist within the one
logical windows domain.
At least I think this would solve your problem...
themolk.
________________________________
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Yann
Sent: Wednesday, 24 January 2007 7:28 AM
To: [email protected]
Subject: [ActiveDir] Question about DNS SRV
registration.
Hello all and happy new year:-),
Say:
-> Site A with DCa that is also dns (integrated to AD).
-> Site B that is a new site.
my goal: dcpromo a new DC (DCb) in site B.DCb will be
also dns (integrated to AD).
-> DCa & DCb belong to the same domain (domain.local).
My AD is w2k3 FFL mode.
In order to add the new DCb in the existing domain.com,
DCb is dns client to DCa.
When dcpromo is finished, i configured:
- DCb as dns client for himself
- DCa as secondary dns sever for DCb.
Everything looks good .. BUT:
When clients in site B ask for all DCs in site B (with
netlogon process),DCb returns DCb and DCa !
a nslookup set type=srv
_ldap._tcp.siteB._sites.domain.local shows the 2 DCs
-> DCa.domain.local
-> DCb.domain.local
When i search in dns console, i found that DCa still
present in site B, i think, this is due to the fact that DCb's nic allow
dynamic update and thus dynamically records DCa srv records.
The only way i found to avoid DCb returning DCa to
clients in site B is to delete srv records for DCa in dns (site B).
Question:
What is the best practice to avoid DCb to return DCa to
clients and where in the process i'm wrong ?
Thanks,
Yann
________________________________
Découvrez une nouvelle façon d'obtenir des réponses à
toutes vos questions ! Profitez des connaissances, des opinions et des
expériences des internautes sur Yahoo! Questions/Réponses
<http://fr.rd.yahoo.com/evt=42054/*http://fr.answers.yahoo.com> .
This email (including any attachments) contains confidential information and is
intended only for the named addressee. If you are not the named addressee you
should not disseminate, distribute or copy this email. Please notify the sender
immediately by email if you have received this email by mistake and delete this
email from your system and destroy any copies.
This email is also subject to copyright. No part of it should be reproduced,
adapted or communicated without the written consent of the copyright owner.
Email transmission cannot be guaranteed to be secure or error-free and emails
may be interfered with, may contain computer viruses or other defects and may
not be successfully replicated on other systems. The sender does not give any
warranties nor accepts any liability in relation to any of these matters. If
you have any doubt about the authenticity of an email purportedly sent by us,
please contact us immediately.
________________________________
Découvrez une nouvelle façon d'obtenir des réponses à toutes vos
questions ! Profitez des connaissances, des opinions et des expériences des
internautes sur Yahoo! Questions/Réponses
<http://fr.rd.yahoo.com/evt=42054/*http://fr.answers.yahoo.com> .
This email (including any attachments) contains confidential information and
is intended only for the named addressee. If you are not the named addressee
you should not disseminate, distribute or copy this email. Please notify the
sender immediately by email if you have received this email by mistake and
delete this email from your system and destroy any copies.
This email is also subject to copyright. No part of it should be reproduced,
adapted or communicated without the written consent of the copyright owner.
Email transmission cannot be guaranteed to be secure or error-free and emails
may be interfered with, may contain computer viruses or other defects and may
not be successfully replicated on other systems. The sender does not give any
warranties nor accepts any liability in relation to any of these matters. If
you have any doubt about the authenticity of an email purportedly sent by us,
please contact us immediately.
