Listen on - question of configuration

22/06/2007, 18h27

Hi and thank you...

Small AD domain with (2) DNS servers (not split brain, we have our
externals handled by ISP) - Question is:

IN configuration, as far as "listening on" which IP address?
I have (on DNS server 1) the address to listen on as 'itself' first
and the 2nd DNS server, well, second.

On the 2nd DNS server, I have listen on to 'itself' and then the 1st DNS
server...

I get 409 errors doing this... obviously I don't understand exactly what
is the issue.

We do use forwarders to our ISP 'cached' DNS servers.
We have the 'local' DNS IPs listed in our DHCP server, not the 'external
ISP' forwarders.
I have disabled recursion.

Any is greatly appreciated. Thanks,

Doc

22/06/2007, 19h08

Read inline please.

In news:467c0538$0$11221$9a6e19ea@news.newshosting.co m,
Doc <pc-dc-doc@ca.rr.com> typed:
> Hi and thank you...
>
> Small AD domain with (2) DNS servers (not split brain, we have our
> externals handled by ISP) - Question is:
>
> IN configuration, as far as "listening on" which IP address?
> I have (on DNS server 1) the address to listen on as 'itself' first
> and the 2nd DNS server, well, second.

Are you referring to the Interfaces tab on the DNS server Properties sheet?
If you are, Listen on the IP of the internal NIC.

>
> On the 2nd DNS server, I have listen on to 'itself' and then the 1st
> DNS server...

Same as above, one big thing, if you are adding IP addresses of Interfaces
that are not on the local machine you will get 409 Errors.

<snip>

> I have disabled recursion.
On the Advanced tab or on the Forwarders tab?
These two are not the same, on the Forwarders tab "Do not use recursion"
means the server will not use its root hints to do recursive lookups. All
recursion must be done by the forwarder.
On the Advanced tab, "Disable recursion" will stop DNS from resolving any
external name, it will answer only from its own zones.

--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This s

===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oe.com/OEBackup/Default.aspx
===================================

25/06/2007, 18h18

Kevin D. Goodknecht Sr. [MVP] typed this:
> Read inline please.
>
> In news:467c0538$0$11221$9a6e19ea@news.newshosting.co m, Doc
> <pc-dc-doc@ca.rr.com> typed:
>> Hi and thank you...
>>
>> Small AD domain with (2) DNS servers (not split brain, we have our
>> externals handled by ISP) - Question is:
>>
>> IN configuration, as far as "listening on" which IP address? I have
>> (on DNS server 1) the address to listen on as 'itself' first and
>> the 2nd DNS server, well, second.
>
> Are you referring to the Interfaces tab on the DNS server Properties
> sheet? If you are, Listen on the IP of the internal NIC.
>
>> On the 2nd DNS server, I have listen on to 'itself' and then the
>> 1st DNS server...
>
> Same as above, one big thing, if you are adding IP addresses of
> Interfaces that are not on the local machine you will get 409 Errors.
>
>
> <snip>
>
>> I have disabled recursion.
> On the Advanced tab or on the Forwarders tab? These two are not the
> same, on the Forwarders tab "Do not use recursion" means the server
> will not use its root hints to do recursive lookups. All recursion
> must be done by the forwarder. On the Advanced tab, "Disable
> recursion" will stop DNS from resolving any external name, it will
> answer only from its own zones.

Thank you Kevin - I have used the "disable recursion" Forwarder Tab - I
wanted to USE only those DNS servers provided to us by Sprint.

So reading ABOVE, it seems that the DNS server (basically as you say,
"Listen on the IP of the internal NIC".) will therefore be "listening to
itself" - even if we have two or three internal DNS servers for our
local network - (Yes, this is the Interfaces Tab on the Server
Properties DNS sheet).

Thank you... very much!

22/06/2007, 18h27	#1
Doc Messages: n/a Hébergeur:	Listen on - question of configuration Hi and thank you... Small AD domain with (2) DNS servers (not split brain, we have our externals handled by ISP) - Question is: IN configuration, as far as "listening on" which IP address? I have (on DNS server 1) the address to listen on as 'itself' first and the 2nd DNS server, well, second. On the 2nd DNS server, I have listen on to 'itself' and then the 1st DNS server... I get 409 errors doing this... obviously I don't understand exactly what is the issue. We do use forwarders to our ISP 'cached' DNS servers. We have the 'local' DNS IPs listed in our DHCP server, not the 'external ISP' forwarders. I have disabled recursion. Any is greatly appreciated. Thanks, Doc

22/06/2007, 19h08	#2
Kevin D. Goodknecht Sr. [MVP] Messages: n/a Hébergeur:	Re: Listen on - question of configuration Read inline please. In news:467c0538$0$11221$9a6e19ea@news.newshosting.co m, Doc <pc-dc-doc@ca.rr.com> typed: > Hi and thank you... > > Small AD domain with (2) DNS servers (not split brain, we have our > externals handled by ISP) - Question is: > > IN configuration, as far as "listening on" which IP address? > I have (on DNS server 1) the address to listen on as 'itself' first > and the 2nd DNS server, well, second. Are you referring to the Interfaces tab on the DNS server Properties sheet? If you are, Listen on the IP of the internal NIC. > > On the 2nd DNS server, I have listen on to 'itself' and then the 1st > DNS server... Same as above, one big thing, if you are adding IP addresses of Interfaces that are not on the local machine you will get 409 Errors. <snip> > I have disabled recursion. On the Advanced tab or on the Forwarders tab? These two are not the same, on the Forwarders tab "Do not use recursion" means the server will not use its root hints to do recursive lookups. All recursion must be done by the forwarder. On the Advanced tab, "Disable recursion" will stop DNS from resolving any external name, it will answer only from its own zones. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This s =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oe.com/OEBackup/Default.aspx ===================================

25/06/2007, 18h18	#3
Doc Messages: n/a Hébergeur:	Re: Listen on - question of configuration Kevin D. Goodknecht Sr. [MVP] typed this: > Read inline please. > > In news:467c0538$0$11221$9a6e19ea@news.newshosting.co m, Doc > <pc-dc-doc@ca.rr.com> typed: >> Hi and thank you... >> >> Small AD domain with (2) DNS servers (not split brain, we have our >> externals handled by ISP) - Question is: >> >> IN configuration, as far as "listening on" which IP address? I have >> (on DNS server 1) the address to listen on as 'itself' first and >> the 2nd DNS server, well, second. > > Are you referring to the Interfaces tab on the DNS server Properties > sheet? If you are, Listen on the IP of the internal NIC. > >> On the 2nd DNS server, I have listen on to 'itself' and then the >> 1st DNS server... > > Same as above, one big thing, if you are adding IP addresses of > Interfaces that are not on the local machine you will get 409 Errors. > > > <snip> > >> I have disabled recursion. > On the Advanced tab or on the Forwarders tab? These two are not the > same, on the Forwarders tab "Do not use recursion" means the server > will not use its root hints to do recursive lookups. All recursion > must be done by the forwarder. On the Advanced tab, "Disable > recursion" will stop DNS from resolving any external name, it will > answer only from its own zones. Thank you Kevin - I have used the "disable recursion" Forwarder Tab - I wanted to USE only those DNS servers provided to us by Sprint. So reading ABOVE, it seems that the DNS server (basically as you say, "Listen on the IP of the internal NIC".) will therefore be "listening to itself" - even if we have two or three internal DNS servers for our local network - (Yes, this is the Interfaces Tab on the Server Properties DNS sheet). Thank you... very much!

Outils de la discussion
Afficher une version imprimable Envoyer un lien vers cette page par email