delegation question

B

Blake

The current configuration is: 2 internal DNS servers (running Windows 2000)
and 2 external DNS servers (running Windows 2003) in a 'split name space'
configuration.

Our internal servers have an AD integrated zone called 'school.edu' (not
really, but you get the idea). Our external servers have a static zone
called 'school.edu' and an updatable zone called 'student.school.edu'.
Dynamic DNS creates records in the latter.

I want to set up a delegation from the inside to the outside (so I don't
have to do zone transfers from the outside to the inside). I have setup a
delegation within our AD integrated zone for 'student.school.edu' and it is
populated with our external name servers. But I can't get any hosts to
resolve.

ping host.student.school.edu
non existent domain

However if I run nslookup:

set type=ns
student.school.edu

I get the correct NS information.

Any ideas?

Blake
 
K

Kevin D. Goodknecht Sr. [MVP]

Blake said:
The current configuration is: 2 internal DNS servers (running
Windows 2000) and 2 external DNS servers (running Windows 2003) in a
'split name space' configuration.

Our internal servers have an AD integrated zone called 'school.edu'
(not really, but you get the idea). Our external servers have a
static zone called 'school.edu' and an updatable zone called
'student.school.edu'. Dynamic DNS creates records in the latter.

I want to set up a delegation from the inside to the outside (so I
don't have to do zone transfers from the outside to the inside). I
have setup a delegation within our AD integrated zone for
'student.school.edu' and it is populated with our external name
servers. But I can't get any hosts to resolve.

ping host.student.school.edu
non existent domain

However if I run nslookup:

set type=ns
student.school.edu

I get the correct NS information.
Click to expand...

It sounds like it should work.
If nslookup returns the NS records, does it also return any records known to
exist?

Are you using a stub zone or a delegation?
 
B

Blake

I am using delegation since the inside servers are 2K (It is my
understanding that only 2k3 support stub zones) If that isn't true please
let me know.

It returns the NS records fine but won't return A records - it just gives me
'non existant domain' errors

:(

Blake
 
K

Kevin D. Goodknecht Sr. [MVP]

Blake said:
I am using delegation since the inside servers are 2K (It is my
understanding that only 2k3 support stub zones) If that isn't true
please let me know.

It returns the NS records fine but won't return A records - it just
gives me 'non existant domain' errors
Click to expand...

Can you post one of these queries using nslookup -d2 from the DNS server
machine itself to the IP of the delegated server?
 
B

Blake

Kevin,
It looks like it is working. I always forget it takes time for the
AD-integrated zone to 'propogate' to the other name servers. Once I gave it
some time it seems good. (My client was going against one server and I was
setting up delegation on the other)

Thanks for your time.

Blake
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

DNS Delegations 0
Warning 7062... 1
Proper DNS configuration help 12
to forward or not to forward... That is the question. 10
DNS register problem 16
Event 7062 - DNS server encountered a packet addressed to itself 3
DNS Error 3
Event ID : 7062........ 2

Top