×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

recommended dns settings for domain controllers running 2008 server
2

recommended dns settings for domain controllers running 2008 server

recommended dns settings for domain controllers running 2008 server

(OP)
What is the current recommended way to configure the tcp/ip settings on domain controllers?  We run 3 domain controllers and each one also runs dns. Should the DCs point to themselves for primary dns and then another server for secondary dns? or should their primary dns be one of the other servers?

thanks for any suggestions....
 

RE: recommended dns settings for domain controllers running 2008 server

Primary is local first then any other DNS server second

http://www.samtechconsulting.com
_______________________________________
Great knowledge can be obtained by mastering the Google algorithm.

RE: recommended dns settings for domain controllers running 2008 server

(OP)
thanks thats the way they have always been run, but i had read or been told that NOW they recommended to make the primary a different server and not its self...

 

RE: recommended dns settings for domain controllers running 2008 server

2

Quote:

Primary is local first then any other DNS server second  

That is actually a very common misconfiguration in DNS servers.  The first DNS server listed (aka, primary) should NOT be the server itself.  The correct method is to list one or more DNS servers as the primary, secondary, and on the advanced tab, and then add the loopback IP address (127.0.0.1) as the last DNS server in the list.  If you run the DNS Best Practice Analyzer it will confirm this.

The reason is pretty simple.  If you set the DNS server to use itself for DNS lookups then it will never query another DNS server unless its own DNS service isn't running.  That means that it is entirely possible for it to become isolated from the other DNS servers in your environment if it doesn't have the appropriate records to locate the replication partners, and you'll never know that anything is wrong until you run into name resolution issues.

________________________________________
CompTIA A+, Network+, Server+, Security+
MCTS:Windows 7
MCSE:Security 2003
MCITP:Server Administrator
MCITP:Enterprise Administrator
MCITP:Virtualization Administrator 2008 R2
Certified Quest vWorkspace Administrator

RE: recommended dns settings for domain controllers running 2008 server

kmcferrin is correct.  I've always used forwarders just in case one of my DNS servers could not resolve internal records.  This is probably old habits from previous versions of Windows. :)

Best Practices Analyzer
http://technet.microsoft.com/en-us/library/dd759260.aspx

http://www.samtechconsulting.com
_______________________________________
Great knowledge can be obtained by mastering the Google algorithm.

RE: recommended dns settings for domain controllers running 2008 server

(OP)
thanks for the update

I reconfigured the ip settings on my dc's to match the new configuration..

 

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login


Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close