You really should slide this question over to one of the Win2k lists out there, but I'll give you a short answer: the secondaries will work fine.
By default, secondaries forward the update requests to the zone primary, where it would register (if permitted) and then replication will take it back down to the secondaries. There will be a bit of lag, but no more so than with AD integrated. Personally, if they're going to be DCs for that domain, there's no reason to not make them run AD Integrated zones, however. -------------------------------------------------------------- Roger D. Seielstad - MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc. > -----Original Message----- > From: Erik L. Vesneski [mailto:[EMAIL PROTECTED] > Sent: Sunday, August 17, 2003 10:21 AM > To: Exchange Discussions > Subject: OT - DNS Architecture ? > > > Hi, > > I have spent considerable time looking over my DNS setup and thought I > would send it to this list due to talent. > > Here it goes: > > I have 4 internal DNS servers. > > Two of them pull from an AD integrated primary outsourced DNS server. > > These two servers have 3 forward zones. > > 1 AD integrated > 2 Secondarys > > These two servers are in our DC far away. > > At HQ there are two servers with the same three forward zones but they > are secondarys. They pull from the DNS servers in our DC. > > AD DNS is handled by two root domain servers in our DC. If > one of these > AD integrated servers is not used as the primary entry in the DNS > portion of tcp/ip in the clients & servers at HQ will DNS be > auto-updated? If so or not why and how can I get around this? > > Basically - the local office with the two secondarys are going to pull > DNS from the AD DNS systems but are these records going to accurate > company wide? > > Can 4 servers located in different geographical areas have the same AD > integrated forward zone? In essence, act as one big AD integrated zone > trading their records to ensure accuracy across the WAN? > > I am not sure what the best thing to do is here..... > > How do I get these two sets of AD integrated systems to > ensure accuracy > between each other? > > Do I just turn the forward zone on my two systems at HQ into AD > integrated and set everyone to those two systems at HQ? If > the systems > locally are not AD integrated DNS servers can I ensure accuracy? If a > new computer comes on the network at HQ and only points to > the secondary > servers are the AD integrated zones in the root domain going to be > updated? Can someone in the DC see the system here at HQ? They will > need to. > > Do I make two separate AD integrated DNS systems? Keep the one in the > DC and make another set here at the HQ? > > That is the architectural question here. Maybe I am missing something > too. > > Anyway, I am obsessed with this. > > Thanks in advance, > > Erik L. Vesneski > WCDC Intel Lead/Sr. Systems Specialist > ISO - Intel Systems > Ph#: 925-658-6161 > www.pmigroup.com > mailto:[EMAIL PROTECTED] > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Web Interface: > http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&t ext_mode=&lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
