Intergate Zone transfer behavior

M

MuffinMaster

I am a little confused if when a zone has been intergrated into AD weather a
normal zone transfer process still applies.

I believe (please correct me) that zone infomation is stored in ad and uses
ad replication process to synic all dns servers that are intergrated for
that zone. What confuses me are the zone tranfer settings.

In particular:
"Allow zone transfer" if this is left unchecked will changes be replicated
thru ad to all DNS servers hosting that intergrated zones thrughout the ad
directory?

"To any server" if marked does this mean ANY server regardless if it is
hosting/serving that zone as an intergrate zone or not as well as if it is a
part of our ad directory or not.

The configuration that I would like is intergrated zone transfers to all of
my intergrate dns server in the same ad directory. We are put up new sites
on a regular basic and dns servers too. We could specify every dns server
for transfer (50+ and growing) , however human error may come in from time
to time. Currently we are using "To any server". Is this the smartest way?

Thx
 
K

Kevin D. Goodknecht [MVP]

In
MuffinMaster said:
I am a little confused if when a zone has been intergrated into AD
weather a normal zone transfer process still applies.

I believe (please correct me) that zone infomation is stored in ad
and uses ad replication process to synic all dns servers that are
intergrated for that zone. What confuses me are the zone tranfer
settings.
Click to expand...
If the zone is AD Integrated it will replicate to all DCs in the domain. You
can disable zone transfers.
In particular:
"Allow zone transfer" if this is left unchecked will changes be
replicated thru ad to all DNS servers hosting that intergrated zones
thrughout the ad directory?

"To any server" if marked does this mean ANY server regardless if it
is hosting/serving that zone as an intergrate zone or not as well as
if it is a part of our ad directory or not.
Click to expand...

If you allow zone transfers "To any server" that means any server or machine
that can connect to you DNS server can do a zone transfer.
The configuration that I would like is intergrated zone transfers to
all of my intergrate dns server in the same ad directory. We are put
up new sites on a regular basic and dns servers too. We could
specify every dns server for transfer (50+ and growing) , however
human error may come in from time to time. Currently we are using "To
any server". Is this the smartest way?

Thx
Click to expand...

It will do this for any zone you select to be AD integrated all you need to
do to get the zone to replicate to all DCs in the domain is to add the DC's
NS record to the zone properties on the name server tab. Then give it about
fifteen minutes or so and as if by magic it will appear on that DC. Pretty
cool, huh?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Zone Transfer between Novell DNS and MS DNS. 1
New Job, new DNS challange, need advise. 2
Proper DNS configuration help 12
Zone Transfer problem - Need Help 6
Zone x-fer event 6525 "refused" error happens frequently 9
change from bind secondary to ad intergrated 7
Zone transfer 19
Question on Zone Transfers with AD Integrated Zones 3

Top