1- Should I just check "Do not use recursion" box on DNS w. forwarding enabled or just remove the ISP DNS servers?
This won't do a thing for you because the recursion is disabled at the ISP's side. Your server is asking them to chase down a lookup for it, and the other guys are saying "nah uh....I don't recurse (chase). What you want to do is stop using these servers for forwarders. Don't do forwarding at all. If you MUST forward, then look for other servers that do recursion. I think by "domain host" you mean your Registrar. Registrars' DNS servers typically recurse, so that's a better option - again only if you are hell bent on forwarding. 2- Should I reverse the DNS servers order on Exchange box's TCP/IP settings? Don't know. What will be the reason? 3- Should I enable forwarding on the other DNS server and add external DNS servers? If so, which DNS servers: ISP's or domain hosts'? See the tail end of my answer to #1 4- Should I just leave things alone? You could. It just adds a little delay to your lookup - the time it takes for the forwarders to tell your DNS server "go away, I don't do recursion". Generally, I ask people to forward IF (and only if) they have a policy that prevents their DNS from talking directly to the outside world (e.g. this is an INTERNAL DNS server that is firewalled off in a silo and it is only allowed to talk to certain places) Sincerely, Dèjì Akómöláfé, MCSE+M MCSA+M MCT Microsoft MVP - Directory Services www.readymaids.com - we know IT www.akomolafe.com Do you now realize that Today is the Tomorrow you were worried about Yesterday? -anon ________________________________ From: [EMAIL PROTECTED] on behalf of Alborzfard, Alex Sent: Thu 11/17/2005 8:49 AM To: [email protected] Subject: [ActiveDir] DNS server question My apologies if this is a bit off-topic, but I was wondering if I ask the masters (bowing my head of course!) a DNS scenario question: I'm at a client site, where they're running AD2K, w. 2 DCs both running DNS, one is actually running Exchange (Yikes!). One DNS has forwarders enabled and is pointing to client's ISP and domain host DNS servers. There are continuous errors in event log about the 2 ISP servers not being recursive. The other doesn't have forwarders enabled, but it's the primary DNS server on Exchange box's TCP/IP settings. My questions are: 1- Should I just check "Do not use recursion" box on DNS w. forwarding enabled or just remove the ISP DNS servers? 2- Should I reverse the DNS servers order on Exchange box's TCP/IP settings? 3- Should I enable forwarding on the other DNS server and add external DNS servers? If so, which DNS servers: ISP's or domain hosts'? 4- Should I just leave things alone? What are the ramifications of doing either? Thanks --Alex Alborzfard List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
