Hi, I have spent considerable time looking over my DNS setup:
I have 4 internal DNS servers. Two of them pull from an AD integrated primary outsourced DNS server. These two servers have 3 forward zones. 1 AD integrated 2 Secondarys These two servers are in our DC far away. At HQ there are two servers with the same three forward zones but they are secondarys. They pull from the DNS servers in our DC. AD DNS is handled by two root domain servers in our DC. If one of these AD integrated servers is not used as the primary entry in the DNS portion of tcp/ip in the clients & servers at HQ will DNS be auto-updated? If so or not why and how can I get around this? Basically - the local office with the two secondarys are going to pull DNS from the AD DNS systems but are these records going to accurate company wide? Can 4 servers located in different geographical areas have the same AD integrated forward zone? In essence, act as one big AD integrated zone trading their records to ensure accuracy across the WAN? I am not sure what the best thing to do is here..... How do I get these two sets of AD integrated systems to ensure accuracy between each other? Do I just turn the forward zone on my two systems at HQ into AD integrated and set everyone to those two systems at HQ? If the systems locally are not AD integrated DNS servers can I ensure accuracy? If a new computer comes on the network at HQ and only points to the secondary servers are the AD integrated zones in the root domain going to be updated? Can someone in the DC see the system here at HQ? They will need to. Do I make two separate AD integrated DNS systems? Keep the one in the DC and make another set here at the HQ? That is the architectural question here. Maybe I am missing something too. Anyway, I am obsessed with this. Thanks in advance, Erik L. Vesneski WCDC Intel Lead/Sr. Systems Specialist ISO - Intel Systems Ph#: 925-658-6161 www.pmigroup.com mailto:[EMAIL PROTECTED] ------ You are subscribed as [EMAIL PROTECTED] Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=nt2000&text_mode=&lang=english To unsubscribe send a blank email to [EMAIL PROTECTED]
