Normally, we've been setting up all systems with dhcp and assigning dns
servers thusly:
192.168.1.254 # firewall, w/dnscache
x.y.z.2 # ISP assigned dns server(s)
x.y.z.3 ...
I suppose, our theory is, if dnscache gets trashed, at least dns queries
will continue to function within the environment.
Normally, this works great and dnscache gets a good workout and we
cannot see any failover to ISP assigned dns servers.
In one of our environments, our customer is running win2k servers &
active directory services. In this particular environment, (nearly) all
dns queries get handled by the second (x.y.z.2) dns server specified.
Of course, if we remove all dns servers other than the
firewall/dnscache, then dnscache gets all of the requests and handles
them accordingly.
H:\>nslookup www.lrp.com
*** Can't find server name for address 192.168.1.254: Non-existent
domain
*** Default servers are not available
Server: UnKnown
Address: 192.168.1.254
Non-authoritative answer:
Name: www.lrp.com
Address: 208.218.136.74
We've seen this non-existent domain on other wintel boxen; but, dnscache
continues to function properly. Note, this example is without any
additional dns servers defined.
As you know, active directory services requires that m$oft dns run on
the primary domain controller (or, whatever ADS has transmogrified PDC
to).
The only other oddity in this environment is that, inside the firewall,
there is a Cisco router:
Internet
|
firewall/dnscache
|
Cisco router
| | |
subnet1 subnet2 subnet3 ...
What do you think?
--
Best Regards,
mds
mds resource
888.250.3987
Dare to fix things before they break . . .
Our capacity for understanding is inversely proportional to how much we
think we know. The more I know, the more I know I don't know . . .
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
