Thursday, April 7, 2016

active directory - Domain Controller - Local DNS Settings




What is the best practice for configuring a Domain Controller's adapter DNS settings?




We have an MPLS network with 6 DC's located in different locations.



HQ - DC1 & DC2
WH - DC3
Branch - DC4
Cloud - DC5
Colo - DC6



My thoughts were to use the DC's IP address as the primary and one of the other DC's as secondary.




Thoughts?



Thanks!


Answer



Unfortunately this is a controversial subject so there is no one authoritative answer.



I personally would use another DC as the primary DNS server, and the DC's own IP address as secondary. Ideally the primary DNS would be in the same physical location as the DC.



In network configurations where some DC's may be inaccessible to others (firewalls), if using the DC as itself for primary may result in significant startup delays. More on that and other useful information here:




Troubleshoot DNS Event ID 4013: The DNS server was unable to load AD integrated DNS zones
http://support.microsoft.com/kb/2001093


-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

linux - How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. S...