PHWinfo - Afficher un message - Selectively overriding hierarchical lookup

31/03/2006, 05h16

"Misaro" <Misaro@discussions.microsoft.com> wrote in message
news:7509BC05-6167-4A5F-8803-472A520F0C62@microsoft.com...
> How can one override a recursive lookup for a domain not hosted on a
> Microsoft DNS Server?
> The scenario is a local network with a Microsoft DNS Server running both
> as
> an authoritative server for some local domains and as a DNS solver for all
> the internal clients.
> So far, so good.
> For reasons outside the scope of this query, a separate authoritative
> server
> (djbdns on linux) was set up for certain domains belonging to the company.
> This server has a private IP where the domains are being published for
> internal use, and it would be preferable for the Microsoft DNS Server to
> query this server directly for all these domains, rather than resolving
> hierarchically down from a root server.

For a SINGLE record you can:

Just create ZONE that is the same name as the SPECIFIC
server (e.g., serverX.domain.com) and then give it an A
record with a 'blank' name (which means it will be the
same as the zone, i.e., "same as parent" which is both the
name of the 'zone' AND the actual server.)

> - The local linux guys say this can be done easily on djbdns, just telling
> the cache the ips of the servers which all queries related to a domain
> should
> be directed to.

For directing the queries on an entire zone to a different
server you must use Win2003 (NOT Win2000) Conditional
Forwarding OR you must actually hold a secondary for the
correct server (only choice on Win2000.)

> The question is: How can you tell a Microsoft DNS Server which servers to
> query for a certain domain, thus selectively bypassing the usual
> TLD-SLD-LD
> lookup?

To do it (precisely) this way requires Win2003 if you use
a Microsoft server.

For the most part a Microsoft DNS server is better for supporting
a Microsoft ACTIVE DIRECTORY (on many counts including
especially replication and security) but there are some things that
are easier to do with Open Source DNS (BINS, djbdns, etc.)

--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]

> Thanks comments

31/03/2006, 05h16	#2
Herb Martin Messages: n/a Hébergeur:	Re: Selectively overriding hierarchical lookup "Misaro" <Misaro@discussions.microsoft.com> wrote in message news:7509BC05-6167-4A5F-8803-472A520F0C62@microsoft.com... > How can one override a recursive lookup for a domain not hosted on a > Microsoft DNS Server? > The scenario is a local network with a Microsoft DNS Server running both > as > an authoritative server for some local domains and as a DNS solver for all > the internal clients. > So far, so good. > For reasons outside the scope of this query, a separate authoritative > server > (djbdns on linux) was set up for certain domains belonging to the company. > This server has a private IP where the domains are being published for > internal use, and it would be preferable for the Microsoft DNS Server to > query this server directly for all these domains, rather than resolving > hierarchically down from a root server. For a SINGLE record you can: Just create ZONE that is the same name as the SPECIFIC server (e.g., serverX.domain.com) and then give it an A record with a 'blank' name (which means it will be the same as the zone, i.e., "same as parent" which is both the name of the 'zone' AND the actual server.) > - The local linux guys say this can be done easily on djbdns, just telling > the cache the ips of the servers which all queries related to a domain > should > be directed to. For directing the queries on an entire zone to a different server you must use Win2003 (NOT Win2000) Conditional Forwarding OR you must actually hold a secondary for the correct server (only choice on Win2000.) > The question is: How can you tell a Microsoft DNS Server which servers to > query for a certain domain, thus selectively bypassing the usual > TLD-SLD-LD > lookup? To do it (precisely) this way requires Win2003 if you use a Microsoft server. For the most part a Microsoft DNS server is better for supporting a Microsoft ACTIVE DIRECTORY (on many counts including especially replication and security) but there are some things that are easier to do with Open Source DNS (BINS, djbdns, etc.) -- Herb Martin, MCSE, MVP Accelerated MCSE http://www.LearnQuick.Com [phone number on web site] > Thanks comments