It's not a problem, it's just part of our standard build procedure. I
have ~200 servers at any given point in time. (With VMWare, that number
is always fluctuating.)
No Shook, the segmentation is not done on subnet boundaries. Not for a
lack of trying on our part, but the Network guys have been rather
resistant to making that change, so we do what we can, with what we've
got.
On Mon, Apr 14, 2008 at 3:01 PM, David Lum <[EMAIL PROTECTED]> wrote:
Do if you add a DNS sever you RDP to each system? Yeech (unless
you have <30 systems) The segmentation you use is how we have our DHCP
set up - a range for servers, another for each floor in our building.
We have so much server churn here manual IP is simply impractical - I
have built probably 20 servers and repurposed (re-imaged) another 20-30
in the last 12 months. If I can get SCCM/BDD enough of a priority then
I'd be sittin' pretty (err, handsome-er).
I just hate having to KVM to each machine to change an IP
setting, I'd just as soon do it from a single MMC, but if it's working
for you, I can't 'dis' it!
Dave Lum - Systems Engineer
[EMAIL PROTECTED] - (971)-222-1025
"When you step on the brakes your life is in your foot's hands"
From: Sherry Abercrombie [mailto:[EMAIL PROTECTED]
Sent: Monday, April 14, 2008 11:13 AM
To: NT System Admin Issues
Subject: Re: 2003 Server DNS
Static via DHCP = NO. Static assigned at the server.
I have my network IP's carved up into nice little segments with
a specific IP ranges for servers, workstations and printers.
Workstations get DHCP, printers get DHCP reservations, servers get their
own range of IP addresses statically assigned to them. None of them
overlap. Actually, in my server IP range it is even further segmented
to Production servers, Development and Test, and each of those
environments is further segmented into physical or virutal ,and then
there is the DMZ......
Say, that sounds a little bit like network segmentation........
On Mon, Apr 14, 2008 at 12:19 PM, David Lum <[EMAIL PROTECTED]>
wrote:
Static.....you mean static via DHCP reservation, right? If you
mean static at the server I declare you insane unless you need multiple
IP's for some reason J.
Shook:
1: No
2: DHCP duration - 8 days
3: Zone in question is set to 1 day for both no-refresh and
refresh intervals (at the zone) but at the server level (in the DNS MMC)
it is set not to scavenge at all.
From: Sherry Abercrombie [mailto:[EMAIL PROTECTED]
Sent: Monday, April 14, 2008 10:02 AM
To: NT System Admin Issues
Subject: Re: 2003 Server DNS
I assign my servers a static ip address so they never have to
renew their lease.
On Mon, Apr 14, 2008 at 11:57 AM, Andy Shook
<[EMAIL PROTECTED]> wrote:
Questions....
1. Is the DC in question a member of the DNSUpdateProxy group?
2. What is the lease length on an address?
3. How often is your DNS server(s) set to clean up the zone
files?
Shook
http://www.linkedin.com/in/andyshook
-----Original Message-----
From: David Lum [mailto:[EMAIL PROTECTED]
Sent: Monday, April 14, 2008 12:54 PM
To: NT System Admin Issues
Subject: 2003 Server DNS
Anyone know where I can find an MS KB on Windows Server DNS
client
registration process/sequence? We have a pair of servers that
seem to
lose their DNS (A) records whenever they renew their IP. DNS
and DHCP
reside on the same DC (and how bad is that for security, anyone
explicitly avoid this scenario?), clients in question are 2003
Server
SP2.
Just re-familiarizing how the client DNS registration process
will help
me immensely.
TIA,
Dave Lum - Systems Engineer
[EMAIL PROTECTED] - (971)-222-1025
"When you step on the brakes your life is in your foot's hands"
~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~
~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~
~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
--
Sherry Abercrombie
"Any sufficiently advanced technology is indistinguishable from
magic."
Arthur C. Clarke
--
Sherry Abercrombie
"Any sufficiently advanced technology is indistinguishable from
magic."
Arthur C. Clarke
--
Sherry Abercrombie
"Any sufficiently advanced technology is indistinguishable from magic."
Arthur C. Clarke
We do segementation at network boundaries, and I am running 600+
Servers, and 4 Server farm segements at one site so far.
Z
Edward E. Ziots
Network Engineer
Lifespan Organization
MCSE,MCSA,MCP,Security+,Network+,CCA
Phone: 401-639-3505
-----Original Message-----
From: Sherry Abercrombie [mailto:[EMAIL PROTECTED]
Sent: Monday, April 14, 2008 4:24 PM
To: NT System Admin Issues
Subject: Re: 2003 Server DNS
~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~
~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
