Thank you very much for your input -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jorge de Almeida Pinto Sent: Saturday, April 30, 2005 2:13 AM To: 'Rick Kingslan '; '[EMAIL PROTECTED] '; '[email protected] ' Subject: RE: [ActiveDir] primary and secondary dns question
In addition to what Rick told you... Win2K DCs in a forest root domain (the first domain created in an AD forest) should (must) be configured as mentioned in scenario 2. You mention the PDC explicitely but can be any other DC in that domain. It should be just a DC/DNS the others are pointing to as preferred. (http://support.microsoft.com/default.aspx?scid=kb;en-us;275278&id=kb;en -us; 275278) Win2K DCs in any other domain in an AD forest can be configured as mentioned in scenario 1 and 2 Win2K3 DCs in any domain in an AD forest can either be configured as mentioned in scenario 1 or 2. (allthough some people still believe W2K3 DCs should be configured as mentioned for Win2K DCs) To not confuse you anymore (if I did), just go with what Rick described. That will work OK! Concerning WINS... If a server DOES NOT HAVE WINS installed, you can point to at least any WINS server you want to. If a server DOES HAVE WINS installed it is recommended to configure the WINS server to only point to itself and not to any other WINS server. This has to do with the ownership of the record. e.g. WINSSRV1 does not like it if WINSSRV2 is the owner of the record of WINSSRV1. There are best-practices for WINS also. See http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/S erve rHelp/ed9beba0-f998-47d2-8137-a2fc52886ed7.mspx QUOTE ############ Configure each WINS server computer to point to itself. Each WINS server that you install on your network must register its own set of NetBIOS unique and group names in WINS. To prevent WINS service problems that can occur when a WINS record becomes split (that is, when names registered for a particular WINS server are owned by different WINS servers), each WINS server computer should point only to its own IP address when configuring its TCP/IP properties ############ Cheers #JORGE# -----Original Message----- From: [EMAIL PROTECTED] To: [email protected] Sent: 4/30/2005 3:38 AM Subject: RE: [ActiveDir] primary and secondary dns question Ara, Welcome to the list. Glad to have you here! Good question. It's a common one that stumps the new AD aficionado, but a good question nonetheless. Your first DNS server should point to itself. Initially, the secondary will be empty, as you likely will not have a second DNS to point it to. Second and subsequent DNS servers in a domain should point to the first DNS server, with the secondary pointing to itself. At this point, you can point the secondary of the first to another DNS. Here's a Q KB on this subject to help you with the subject: http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B291382 WINS - Honestly I'm not so sure. I suspect that I would do the same, more because I have a lack of real evidence one way or another. I know of potential issues with DNS settings, WINS - not so much. Good luck! Rick Kingslan MCSE, MCSA, MCT, CISSP Microsoft MVP: Windows Server / Directory Services Windows Server / Rights Management Windows Security (Affiliate) Associate Expert Expert Zone - www.microsoft.com/windowsxp/expertzone WebLog - www.msmvps.com/willhack4food -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ara Sent: Friday, April 29, 2005 8:15 PM To: [email protected] Subject: [ActiveDir] primary and secondary dns question Hello everyone I am just new to this list so forgive me if it is a dumb question. Having 2 domain controllers based on 2003, how should be the dns settings on network cards? Scenario one PDC first pointing to itself, second pointing to BDC BDC first pointing to itself, second pointing to PDC Scenario two PDC first pointing to itself, second pointing to BDC BDC first pointing to PDC, second pointing to itself And the same scenario for wins settings. I am so confused here. Thank you Attention: This message, including any attachment(s), is intended only for the use of the individual(s) to which it is addressed and may contain information that is privileged or confidential. Any other distribution, copying or disclosure is strictly prohibited. If you are not the intended recipient or have received this message in error, please notify us immediately by reply e-mail and permanently delete this message including any attachment(s), without reading it or making a copy. Any outgoing message has been scanned for possible harmful file(s) or script(s), but it is your sole responsibility to run detection tools as we won't guarantee the safety of message(s). List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you. List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
