Posted: Mon Jun 28, 2010 9:13 am Post subject: DNS in AD forest problem
I've got AD forest which consist of 3 domains. One parent and two children. Parent domain is Windows 2003, children are 2008. The problem is that parent DNS can't see computers logged to child's domain. In the parent DNS, the only thing I see is IP of the child's DC.
Posted: Wed Jul 14, 2010 12:01 am Post subject: root domain points to child dns servers
"parent DNS can't see computers logged to child's domain"
i dont understand that part of your comment.
but i'll try to explain either way.
this would normally be ok. ur parent root dns servers dont need to know or keep records for all the child dns servers. not by default anyway. thats why u only see the dc/dns record for the child domain. when it wants to find something in the child domain it will forward the dns request to the child dns servers.
if you want to records of all child hosts in the root dns server then either configure the dns replication with active directory to go to all dns servers in the forest, or configure a separate secondary lookup zone and use a zone transfer from the child dns server to the root dns server.
but normally nowadays ur root dns servers would only keep track of ur child dns servers. conditional forwarders typically do this by default on a Windows server.
in a large network, ur root dns servers typically have only production servers, network devices and public internet records for ur dmz server listed in there. no need to also keep a copy of ur client systems connected to the child domain controllers.
Thanks for reply and explanation.
Now I see, it's ok. Just before I deployed WinSvr2008 into our forest, I had only 2003 DCs, and those DCs replicate their zones to main DC of the forest.
It was new for me that 2008 create only delegation.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum