On Mon, Jan 12, 2009 at 4:27 AM, Graeme Carstairs <[email protected]> wrote: > Is there a tool that I can run with a machine setup for each of the 3 > combinations of DNS servers I have been given to use, and get it to fully > test functionality for a client PC
Use NSLOOKUP (or better yet, "dig" from ISC BIND) to run queries against the various DNS servers, attempting to look up the SRV records which let AD members find AD DCs and GCs. You can find a nice list of these records at <http://www.petri.co.il/active_directory_srv_records.htm>. For example, if the AD domain name is <corp.example.com>, and your target DNS server is at 192.0.2.43, the domain-wide list of DCs could be queried with: NSLOOKUP -type=SRV _ldap._tcp.corp.example.com. 192.0.2.43 -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
