hi,

I have a question on the dns, if i have a domain A and B when I ping domain
A it will go to domain B, these can be done by using forwader on the dns, but
now my question is, if we dont use any forwarder can we complete these
task?will like to output the result when we do nslookup on domain A, it will
said these record is servered by ns1 or ns2.kindly advise on the steps

In news0F36F35-E467-40E4-B34F-BCB810E197C7@microsoft.com,
ckwong19802003@yahoo.com <ckwong19802003@yahoo.com> stated, which I
commented on below:
> hi,
>
> I have a question on the dns, if i have a domain A and B when I ping
> domain A it will go to domain B, these can be done by using forwader
> on the dns, but now my question is, if we dont use any forwarder can
> we complete these task?will like to output the result when we do
> nslookup on domain A, it will said these record is servered by ns1 or
> ns2.kindly advise on the steps

No, not a forwarder, but a CNAME will do that, such as when you ping FQDN A,
but B's IP replies.

If I misunderstood, can you provide an example of exactly what you are
pinging and the results please? Are these public domains, such as are you
pinging 'example-A.com' and the IP from 'example-B.com' replies?

As for nslookup, there are a number of features and commands that can be
used to do various things. If you type in:
nslookup
set q=SOA
domain.com

it will tell you who domain.com's nameservers are. Is that what you are
looking for?

--
Ace
Innovative IT Concepts, Inc (IITCI)
Willow Grove, PA

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Directory Services
Microsoft Certified Trainer

Having difficulty reading or finding responses to your post?
Instead of the website you're using, I suggest to use OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. This is a direct link to the Microsoft Public
Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
to easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject.
It's easy:

How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164

Infinite Diversities in Infinite Combinations
Assimilation Imminent. Resistance is Futile
"Very funny Scotty. Now, beam down my clothes."

The only constant in life is change...

hi those domain are public available and we have a internal dns which is
domainA and contain all the record from internal and also external.DomainA is
also public available and we have bought an hardware balancer which contain 2
public ip address and we like the hardware to do the load balance instead of
using the window round robin.Let said when i ping mail.domainA.com it will
reply with mail.balancer.domainA.com.And when you do an nslookup to these
external dns which run on redhat it will show as below
> main.domainA.com
Server: servername.balancer.domainA.com
Address: public ip
Aliases: servername.domainA.com

Name: main.domainA.co,
Served by:
- ns1.balancer.domainA.com
public ip A
balancer.domainA.com
- ns2.balancer.domainA.com
public ip b
balancer.domainA.com

And as said these load balance is done on the hardware level and it is not
on the dns, if i add two record on the dns it is already run on dns
level.Kindly advise how should i approach

"Ace Fekay [MVP]" wrote:

> In news0F36F35-E467-40E4-B34F-BCB810E197C7@microsoft.com,
> ckwong19802003@yahoo.com <ckwong19802003@yahoo.com> stated, which I
> commented on below:
> > hi,
> >
> > I have a question on the dns, if i have a domain A and B when I ping
> > domain A it will go to domain B, these can be done by using forwader
> > on the dns, but now my question is, if we dont use any forwarder can
> > we complete these task?will like to output the result when we do
> > nslookup on domain A, it will said these record is servered by ns1 or
> > ns2.kindly advise on the steps
>
> No, not a forwarder, but a CNAME will do that, such as when you ping FQDN A,
> but B's IP replies.
>
> If I misunderstood, can you provide an example of exactly what you are
> pinging and the results please? Are these public domains, such as are you
> pinging 'example-A.com' and the IP from 'example-B.com' replies?
>
> As for nslookup, there are a number of features and commands that can be
> used to do various things. If you type in:
> nslookup
> set q=SOA
> domain.com
>
> it will tell you who domain.com's nameservers are. Is that what you are
> looking for?
>
> --
> Ace
> Innovative IT Concepts, Inc (IITCI)
> Willow Grove, PA
>
> This posting is provided "AS-IS" with no warranties or guarantees and
> confers no rights.
>
> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
> Microsoft MVP - Directory Services
> Microsoft Certified Trainer
>
> Having difficulty reading or finding responses to your post?
> Instead of the website you're using, I suggest to use OEx (Outlook Express
> or any other newsreader), and configure a news account, pointing to
> news.microsoft.com. This is a direct link to the Microsoft Public
> Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
> to easily find, track threads, cross-post, sort by date, poster's name,
> watched threads or subject.
> It's easy:
>
> How to Configure OEx for Internet News
> http://support.microsoft.com/?id=171164
>
> Infinite Diversities in Infinite Combinations
> Assimilation Imminent. Resistance is Futile
> "Very funny Scotty. Now, beam down my clothes."
>
> The only constant in life is change...
>
>
>

In news:2FF82FF0-FCD1-44C6-B4EE-FA32CF544990@microsoft.com,
ckwong19802003@yahoo.com <ckwong19802003@yahoo.com> stated, which I
commented on below:
> hi those domain are public available and we have a internal dns which
> is domainA and contain all the record from internal and also
> external.DomainA is also public available and we have bought an
> hardware balancer which contain 2 public ip address and we like the
> hardware to do the load balance instead of using the window round
> robin.Let said when i ping mail.domainA.com it will reply with
> mail.balancer.domainA.com.And when you do an nslookup to these
> external dns which run on redhat it will show as below
>> main.domainA.com
> Server: servername.balancer.domainA.com
> Address: public ip
> Aliases: servername.domainA.com
>
> Name: main.domainA.co,
> Served by:
> - ns1.balancer.domainA.com
> public ip A
> balancer.domainA.com
> - ns2.balancer.domainA.com
> public ip b
> balancer.domainA.com
>
> And as said these load balance is done on the hardware level and it
> is not on the dns, if i add two record on the dns it is already run
> on dns level.Kindly advise how should i approach

Keep in mind, Round Robin is not a Windows feature, but rather is it an RFC
DNS feature that all DNS servers are supposed to support.

I have never used a load balancer for DNS services. The only load balancing
I've ever used is for web services. If this is for public web services, I
would simply create a www record for domaina.com, such as www.domainA.com,
and point to the balancer. The balancer would then redirect the http request
to one of the servers behind it. I know Dell's BigIP is a web load balancer.

Are your intentions to have only one DNS server, but have two IP addresses?
YOu can do that by simply port remapping for each public IP, 53 TCP and UDP
to the single internal private IP address of the DNS server.

Alsokeep in mind, you cannot mix public and private IP addresses under the
same zone on an internal DNS that is hosting an internal Active Directory
domain using private IPs.

Using a balancer, and I am not sure what name brand you are using, I would
need to consult the docs to see if it will support DNS traffic.

Ace

hello

We are using F5 hardware load balancer,and it seem on the linux machine what
they need to do is add the 2 nameserver which is the load balancer public ip
and create a cname of mail.balancer.domainA.com.which dont know how all
request for the mail.balancer.domainA.com will be forwarded to the 2 balancer
ip.Even I do the same configuration it wont work on windows, the only thing
can be done is add a forwarder for domaina.com to the load balancer ip then
these will work perfectly fine.and for other few domain that need to resolve
locallly then have to create a zone file called as server01.domainA.com with
the internal ip address.Just the problem if we create those A record on the
domainA.com such as www then it only point to 1 public ip address, and if one
of the link down , we have to manual change the dns to point to other ip
address.From your experty is that possible to do like if i want to query a
fqdn then it will forward to the nameserver to seach for the record


"Ace Fekay [MVP]" wrote:

> In news:2FF82FF0-FCD1-44C6-B4EE-FA32CF544990@microsoft.com,
> ckwong19802003@yahoo.com <ckwong19802003@yahoo.com> stated, which I
> commented on below:
> > hi those domain are public available and we have a internal dns which
> > is domainA and contain all the record from internal and also
> > external.DomainA is also public available and we have bought an
> > hardware balancer which contain 2 public ip address and we like the
> > hardware to do the load balance instead of using the window round
> > robin.Let said when i ping mail.domainA.com it will reply with
> > mail.balancer.domainA.com.And when you do an nslookup to these
> > external dns which run on redhat it will show as below
> >> main.domainA.com
> > Server: servername.balancer.domainA.com
> > Address: public ip
> > Aliases: servername.domainA.com
> >
> > Name: main.domainA.co,
> > Served by:
> > - ns1.balancer.domainA.com
> > public ip A
> > balancer.domainA.com
> > - ns2.balancer.domainA.com
> > public ip b
> > balancer.domainA.com
> >
> > And as said these load balance is done on the hardware level and it
> > is not on the dns, if i add two record on the dns it is already run
> > on dns level.Kindly advise how should i approach
>
> Keep in mind, Round Robin is not a Windows feature, but rather is it an RFC
> DNS feature that all DNS servers are supposed to support.
>
> I have never used a load balancer for DNS services. The only load balancing
> I've ever used is for web services. If this is for public web services, I
> would simply create a www record for domaina.com, such as www.domainA.com,
> and point to the balancer. The balancer would then redirect the http request
> to one of the servers behind it. I know Dell's BigIP is a web load balancer.
>
> Are your intentions to have only one DNS server, but have two IP addresses?
> YOu can do that by simply port remapping for each public IP, 53 TCP and UDP
> to the single internal private IP address of the DNS server.
>
> Alsokeep in mind, you cannot mix public and private IP addresses under the
> same zone on an internal DNS that is hosting an internal Active Directory
> domain using private IPs.
>
> Using a balancer, and I am not sure what name brand you are using, I would
> need to consult the docs to see if it will support DNS traffic.
>
> Ace
>
>
>

In news:87245B5A-8F8E-43C0-87DB-9A720EF04C4E@microsoft.com,
ckwong19802003@yahoo.com <ckwong19802003@yahoo.com> stated, which I
commented on below:
> hello
>
> We are using F5 hardware load balancer,and it seem on the linux
> machine what they need to do is add the 2 nameserver which is the
> load balancer public ip and create a cname of
> mail.balancer.domainA.com.

> which dont know how all request for the
> mail.balancer.domainA.com will be forwarded to the 2 balancer ip.

> Even I do the same configuration it wont work on windows,

> the only thing
> can be done is add a forwarder for domaina.com to the load balancer
> ip then these will work perfectly fine.

> and for other few domain that
> need to resolve locallly then have to create a zone file called as
> server01.domainA.com with the internal ip address.

> Just the problem if
> we create those A record on the domainA.com such as www then it only
> point to 1 public ip address, and if one of the link down , we have
> to manual change the dns to point to other ip address.

> From your
> experty is that possible to do like if i want to query a fqdn then it
> will forward to the nameserver to seach for the record

I'm trying to interpret your response. With everything in one large
paragraph, minimal punctuation and the context melting/jumping from one
point to the next, can get a little confusing.

I have not used F5 Balancer, so I am not sure how it actually needs to be
configured, and I would need to read up on it, but do not have the time or
resources at this time to do so. But my first guess it won't work with DNS,
Windows, BIND or any other.

For multiple DNS servers, I would just actually create multiple DNS servers.
If you havbe multiple internal DNS servers that you need to be available for
public use, I would use a device like a PIX that supports multiple outside
addresses and port remap the respective IP to the respective internal DNS
server.

Do not mix public IPs and private IPs under the same zone or you will
encounter problems. If you have an internal domain called domainA.com and
an outside domain with the same name, then the outside public DNS server
would have the public IPs, and the separate internal DNS server would have
the private IPs.

As for www, if you have a load balancing web service, such as Dell's BigIP,
one IP is all you need. BigIP actually supports multiple web servers in what
they call a "farm". The http requests coming in on one IP, will get load
balanced between the servers in the farm. It also offers fault tolerance
that if one server were not to respond, it takes it out of the eligble list.

For DNS, create multiple WWW records, one for each IP.

Ace

yah, the way it design is a load balance where user come by public ip and it
load balance among the internal server and for my scenario is abit different
is more to load balance as well on the public ip which is from the different
isp.it is a bit confusing when try to load balance on the especialy on the
public ip.like for other country when they ping www.domaina.com they will get
public ip a and on my country when i ping i will get a different public ip.I
still read on these but cant realy understand well on the bird eye view how
it work.


"Ace Fekay [MVP]" wrote:

> In news:87245B5A-8F8E-43C0-87DB-9A720EF04C4E@microsoft.com,
> ckwong19802003@yahoo.com <ckwong19802003@yahoo.com> stated, which I
> commented on below:
> > hello
> >
> > We are using F5 hardware load balancer,and it seem on the linux
> > machine what they need to do is add the 2 nameserver which is the
> > load balancer public ip and create a cname of
> > mail.balancer.domainA.com.
>
> > which dont know how all request for the
> > mail.balancer.domainA.com will be forwarded to the 2 balancer ip.
>
> > Even I do the same configuration it wont work on windows,
>
> > the only thing
> > can be done is add a forwarder for domaina.com to the load balancer
> > ip then these will work perfectly fine.
>
> > and for other few domain that
> > need to resolve locallly then have to create a zone file called as
> > server01.domainA.com with the internal ip address.
>
> > Just the problem if
> > we create those A record on the domainA.com such as www then it only
> > point to 1 public ip address, and if one of the link down , we have
> > to manual change the dns to point to other ip address.
>
> > From your
> > experty is that possible to do like if i want to query a fqdn then it
> > will forward to the nameserver to seach for the record
>
> I'm trying to interpret your response. With everything in one large
> paragraph, minimal punctuation and the context melting/jumping from one
> point to the next, can get a little confusing.
>
> I have not used F5 Balancer, so I am not sure how it actually needs to be
> configured, and I would need to read up on it, but do not have the time or
> resources at this time to do so. But my first guess it won't work with DNS,
> Windows, BIND or any other.
>
> For multiple DNS servers, I would just actually create multiple DNS servers.
> If you havbe multiple internal DNS servers that you need to be available for
> public use, I would use a device like a PIX that supports multiple outside
> addresses and port remap the respective IP to the respective internal DNS
> server.
>
> Do not mix public IPs and private IPs under the same zone or you will
> encounter problems. If you have an internal domain called domainA.com and
> an outside domain with the same name, then the outside public DNS server
> would have the public IPs, and the separate internal DNS server would have
> the private IPs.
>
> As for www, if you have a load balancing web service, such as Dell's BigIP,
> one IP is all you need. BigIP actually supports multiple web servers in what
> they call a "farm". The http requests coming in on one IP, will get load
> balanced between the servers in the farm. It also offers fault tolerance
> that if one server were not to respond, it takes it out of the eligble list.
>
> For DNS, create multiple WWW records, one for each IP.
>
> Ace
>
>
>
>
>
>

In news:7F585B62-4BD7-439D-81C2-531E918F95BF@microsoft.com,
ckwong19802003@yahoo.com <ckwong19802003@yahoo.com> stated, which I
commented on below:
> yah, the way it design is a load balance where user come by public ip
> and it load balance among the internal server and for my scenario is
> abit different is more to load balance as well on the public ip which
> is from the different isp.it is a bit confusing when try to load
> balance on the especialy on the public ip.like for other country when
> they ping www.domaina.com they will get public ip a and on my country
> when i ping i will get a different public ip.I still read on these
> but cant realy understand well on the bird eye view how it work.

This does sounds complicated. I would honestly create two separate physical
machiens for each nameserver and publish them with the registrar. If you
have multple domain names, it is ok to have the nameservers for the other
domain, such as domainB.com to be handled by ns1.domainA.com.

It would simplify this instead of trying to manipulate it.

Ace