| Author | Messages | |
deji
Posts:262
 | | 06/11/2007 4:47 AM |
| If you want to be sure that they use their local dnsserver, then:
make that that dnsserver is ALWAYS available
configure the client to use ONLY that dnsserver by removing all other dnsserver from the adapter
IF your local dnsserver is not reliable, and you have multiple dnsservers configured on the adapters in the client, the client will prefer to use the dnsserver that is available. IF multiple dnsservers are list on an adapter (or multiple adapters), and one of those dnsservers became unresponsive to a client's request, that dnsserver will be blacklisted and will not be used by the client (for a setperiod of time), even if it is the FIRST dnsserver on the list.
I still question your conclusion that the problem you are seeing is a ptr problem. I am very busy right now, otherwise I'd offer to help you take a look.
Sincerely, _____ (, / | /) /) /) /---| (/_ ______ ___// _ // _ ) / |_/(__(_) // (_(_)(/_(_(_/(__(/_(_/ /) (/ Microsoft MVP - Directory Serviceswww.akomolafe.com- we know IT-5.75, -3.23Do you now realize that Today is the Tomorrow you were worried about Yesterday? -anon
From: YannSent: Mon 6/11/2007 12:55 PMTo: ActiveDir@mail.activedir.orgSubject: RE : RE: RE : RE: [ActiveDir] Reverse DNS lookup must be present for DNS reolution.
Hello,
I totally agree with Deji, but what i do not understand is why clents do not use their localdns servers instead of using remotedns servers for name resolution.
Example:
If i do anslookup, i have this reply:
*** Can't find server name for address : Non-existent domain
*** Can't find server name for address : Non-existent domain
server : remotedns3
IP: 192.168.1.20
workstation1: workstation1.domain.fr
IP: 192.168.1.12
a nslookup -q=srv _ldap._tcp.._sites. shows that the clients find the right DCs in their site, but they still using remotedns3 as previously.
if i set reverse dns zone for localdns2, then a nslookup shows this:
*** Can't find server name for address : Non-existent domain
server : localdns2
IP: 192.168.1.200
workstation1: workstation1.domain.fr
IP: 192.168.1.12
Is there any option in dhcp or elsewhere that tells clients "if reverse lookupsucceeds against a dns then choose this dns server for further dns resolution otherwise choose another dns server that can do a reverse lookup zone" ?
That drives me crazy !
thanks
Yann
Austin Osuide a écrit:
v\:* {behavior:url(#default#VML);} o\:* {behavior:url(#default#VML);} w\:* {behavior:url(#default#VML);} .shape {behavior:url(#default#VML);}
Yann,
I think what Deji is trying to tell you is that “name resolution” is working.
However, nslookup tells you a bit more than that and tries to point you to the absence of the PTR records.
Regards,
Austin
From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Brandon AikenSent: 11 June 2007 20:01To: ActiveDir@mail.activedir.orgSubject: RE: RE : RE: [ActiveDir] Reverse DNS lookup must be present for DNS reolution.
Yes, that sounds right. J
Reverse DNS zones have to be configured separately from forward zones. Adding a forward zone doesn’t do anything about the reverse zone, since for many cases the reverse zone is not sufficiently useful to use.
--
Brandon Aiken
CS/IT Systems Engineer
From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of YannSent: Monday, June 11, 2007 2:12 PMTo: ActiveDir@mail.activedir.orgSubject: RE : RE: [ActiveDir] Reverse DNS lookup must be present for DNS reolution.
Sorry,
What i wanted to say is: all clients have locadns1 as preferred dns server and localdns2 as backup dns server.
When I set reverse dns zone for localdns1 and set a reverse dns zone for loaldns2, clients are now able to use local dns 1&2 for resolution.
If no reverse dns zone are set, then, it is one dns that has a reverse dns zone (as remotedns3) tha is choosed for further resolution.
I hope i was clear ... :)
Thanks
Yann
Brandon Aiken a écrit:
You’re not making sense. How do you have primary and secondary DNS zones if all your DNS domains are AD integrated? Well, secondary I can see, but primary?
--
Brandon Aiken
CS/IT Systems Engineer
From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of YannSent: Monday, June 11, 2007 1:50 PMTo: ActiveDir@mail.activedir.orgSubject: [ActiveDir] Reverse DNS lookup must be present for DNS reolution.
Hello,
I had an issue with reverse dns lookup. When i do a nslookup then hit enterfrom a worstation, itresponds similar as this:
.on localdns1 => non-existent domain.
. on localdns2 => non-existent domain.
. on remotedns3 => reverse dns lookup succedeed -> direct resolution succeed with remotedns3 choose as preferred DNS server .
All dns are DC and all DNS iare integrated to AD.
Localdns1&2 are set to primary and secondarydns in the network card ofall clients.
I have no reverse zone set for localdns1&2 but remotedns3 has a reverse zone for itself.
DHCP is set to deliver IP, and some other configs to clients.
It seems that DNS serversmusthave reverse zone set for themselves, otherwise, these dns will not used for resolution by clients. The clients try then to find other dns that have reverse zone setin order for direct resolution to succeed.
For now, i set reverse zone for localdns1&2 and clients are able to take these 2 localdns as their prefered dns servers.
Any one has already seen this ?
Any help is apreciated.
Thanks,
Yann
Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo! Mail
** LEGAL DISCLAIMER **Statements made in this e-mail may or may not reflect the views and opinions of Wineman Technology, Inc. or its employees.
This e-mail message and any attachments may contain legally privileged, confidential or proprietary information. If you are not the intended recipient(s), or the employee or agent responsible for delivery of this message to the intended recipient(s), you are hereby notified that any dissemination, distribution or copying of this e-mail message is strictly prohibited. If you have received this message in error, please immediately notify the sender and delete this e-mail message from your computer.
Découvrez une nouvelle façon d'obtenir des réponses à toutes vos questions ! Profitez des connaissances, des opinions et des expériences des internautes sur Yahoo! Questions/Réponses.
This message may contain confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a digitally signed version.
Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo! Mail | | | |
|
|