Even if you've got the DNS portion of Active Directory replicated, when the rest of AD comes crashing down, you're going to have major work-stopping outages happening pretty quickly. Why not just bring up offsite hosted full domain controllers?
On Fri, Oct 1, 2010 at 2:23 PM, Dustin Puryear <[email protected]>wrote: > Well, we're looking for an offsite service that WE DON'T HAVE TO MANAGE. > Like an EasyDNS service. Hmm. > > -----Original Message----- > From: [email protected] [mailto:[email protected]] On > Behalf Of Keith Stokes > Sent: Friday, October 01, 2010 1:28 PM > To: [email protected] > Subject: Re: [brlug-general] Offsite DNS hosting for Active Directory > > Damn. Brad can type faster than me. > > On Oct 1, 2010, at 1:25 PM, Brad Bendily wrote: > > > We don't use a service to do this, but we host AD DC DNS on our > > Linux/BIND DNS boxes. > > I haven't done the AD side, but apparently there's a tool to extract > > the DNS entries and then > > they can get imported into BIND. So, it should be fairly easy to do. > > You could also setup > > a master/slave trust between the zones and the entries can be pulled > > that way. > > If you had a DNS host, running linux that would open to trying a few > > things. > > > > > > bb > > > > On Fri, Oct 1, 2010 at 1:15 PM, Dustin Puryear <[email protected] > > > wrote: > >> We have a [common] situation where a company has a single site, has > >> Active > >> Directory, and only has one Domain Controller (DC). We could bring > >> up a > >> second DC, but there are hardware and licensing costs. That, and > >> most AD > >> networks that are workstation-heavy can survive quite well after a > >> DC goes > >> down for a good bit of time. If you exclude the fact that the DC is > >> also the > >> DNS primary for that network. > >> > >> > >> > >> Anyone know of a DNS hosting service that is known to play well > >> with hosting > >> secondary DNS for AD DNS? > >> > >> > >> > >> And what are your thoughts on this in terms of security? Anyone > >> using a > >> hosting service to provide secondary DNS capabilities for internal > >> DNS? > >> > >> > >> > >> --- > >> > >> Puryear IT, LLC - We see IT differently. > >> > >> Baton Rouge, LA - 225-706-8414 > >> > >> http://www.puryear-it.com/ > >> > >> > >> > >> _______________________________________________ > >> General mailing list > >> [email protected] > >> http://mail.brlug.net/mailman/listinfo/general_brlug.net > >> > >> > > > > > > > > -- > > Have Mercy & Say Yeah > > > > _______________________________________________ > > General mailing list > > [email protected] > > http://mail.brlug.net/mailman/listinfo/general_brlug.net > > > -- > > Keith Stokes > > > > > > > _______________________________________________ > General mailing list > [email protected] > http://mail.brlug.net/mailman/listinfo/general_brlug.net > > _______________________________________________ > General mailing list > [email protected] > http://mail.brlug.net/mailman/listinfo/general_brlug.net >
_______________________________________________ General mailing list [email protected] http://mail.brlug.net/mailman/listinfo/general_brlug.net
