This makes more sense. Those other domains could be 2000 where you don't have the ability to do conditional or domain specific forwarding.
I will look into that. Jorge would also be correct in that someone probably manually added them, probably a while back and I just noticed it. Thank you -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Charlie Kaiser Sent: Wednesday, March 08, 2006 4:44 To: [email protected] Subject: RE: [ActiveDir] Name Server records Are there secondary DNS zones for your domain set up in the other domains that have the trust? Someone may have set it up so they could resolve names in your domain from the trusted domain... ********************** Charlie Kaiser W2K3 MCSA/MCSE/Security, CCNA Systems Engineer Essex Credit / Brickwalk 510 595 5083 ********************** > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Figueroa, > Johnny > Sent: Wednesday, March 08, 2006 3:39 PM > To: [email protected] > Subject: RE: [ActiveDir] Name Server records > > It is a DC/DNS and it replicates to the forest which is actually just > one domain. > > That's just it, I don't see how or why anybody would go in there and > add them. There are only a few people that have the access to do that > and adding those records just does not make sense. > > Thanks > > > > ________________________________ > > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Almeida > Pinto, Jorge de > Sent: Wednesday, March 08, 2006 4:28 > To: [email protected] > Subject: RE: [ActiveDir] Name Server records > > > what is the replication scope of the zone? > > if it is: > DC within domain OR DC/DNS servers within domain then someone must > have added them manually. Before removing them try finding out who > added them and more important WHY? > > jorge > > ________________________________ > > From: [EMAIL PROTECTED] on behalf of Figueroa, Johnny > Sent: Thu 2006-03-09 00:17 > To: [email protected] > Subject: [ActiveDir] Name Server records > > > > > I have an AD 2003 domain and an AD integrated DNS zone. If I look a > the properties of that DNS zone and go to the "Name Servers" tab, I > see a few servers that are not our domain controllers/DNS servers. > Those servers look like DNS servers in other domains that we have a > trust with. > > I guess I am curious as to how these servers end up as NS records for > that zone?. The zone is AD integrated and is set to "Dynamic updates", > "secure Only". > > I could and will delete those records but I am thinking those records > will come back. The name servers in question do NOT show up with "*" > on the IP address, which could be the result of a query. > > Ideas? > > Thanks > > Johnny Figueroa > Enterprise Network Consultant/Integrator Network Services Banner > Health Voice (602) > 495-4195 Fax (602) 495-4406 > > WARNING: This message, and any attachments, are intended only for the > use of the individual or entity to which it is addressed and may > contain information that is privileged, confidential and exempt from > disclosure under applicable law. If the reader of this message is not > the intended recipient or employee/agent responsible for delivering > the message to the intended recipient, you are hereby notified that > any dissemination, distribution or copying of the communication is > strictly prohibited. If you receive this communication in error, > please notify us immediately > List info : http://www.activedir.org/List.aspx > List FAQ : http://www.activedir.org/ListFAQ.aspx > List archive: > http://www.mail-archive.com/activedir%40mail.activedir.org/ > > > List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
