DNS Problem?

[Asaf Ganot]

Hi all,
I have many sites, on each site there are 2 or more subnets.
I have a DNS server on each site (not on each subnet)
I use Active Directory integrated zones + Netmask Ordering
My Active Directory Sites and services is defined perfectly. I created a
subnet object for each subnet and linked it to the corresponding site.

When I NSLookup <mydomain.com> from a subnet that contain a DNS server, I
get all my dc's addresses, and my local DNS server's address is shown first,
but, when I NSLookup <mydomain.com> from a subnet that does not contain a
DNS server, I get my dc's addresses, but my local site's DNS server's
address does not shown first.
Since I use \\mydomain.com\dfsroot in my login script, some of the computers
are referencing a distant server rather than a local one.

Another problem that I thing might be related to the same issue; When I edit
a group policy object (locally on a certain DC which is not loaded at all) I
sometime get a very long respond times. When digging into it, I notice that
the GPO's files are retrieved from a distant server rather than locally !

Any suggestions?

 

[Ace Fekay [MVP]]

In

Hi all,
I have many sites, on each site there are 2 or more subnets.
I have a DNS server on each site (not on each subnet)
I use Active Directory integrated zones + Netmask Ordering
My Active Directory Sites and services is defined perfectly. I
created a subnet object for each subnet and linked it to the
corresponding site.

When I NSLookup <mydomain.com> from a subnet that contain a DNS
server, I get all my dc's addresses, and my local DNS server's
address is shown first, but, when I NSLookup <mydomain.com> from a
subnet that does not contain a DNS server, I get my dc's addresses,
but my local site's DNS server's address does not shown first.
Since I use \\mydomain.com\dfsroot in my login script, some of the
computers are referencing a distant server rather than a local one.

Another problem that I thing might be related to the same issue; When
I edit a group policy object (locally on a certain DC which is not
loaded at all) I sometime get a very long respond times. When digging
into it, I notice that the GPO's files are retrieved from a distant
server rather than locally !

Any suggestions?

Try eliminating the netmask ordering. It will use Round Robin, but
specifically DNS will give the client a response based on the querying
client's IP. See if that helps for starters.

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.