Tags: dearsi, dns, dns1, dns2, fulltrust, microsoft, msdn, parent, relationship, resolve, resolving, servers, software, windows

DNS Resolving Problem

On Microsoft » Ms Windows NT/2000/2003

4,616 words with 5 Comments; publish: Mon, 19 May 2008 16:13:00 GMT; (32893.75, « »)

Dears;

I have two dns servers, Dns1 & Dns2 Dns1 is the parent of dns2. with full

trust relationship between them.

I can resolve Dns1 ( short name & FQDN) from dns 2 but The opposite is not

true for two both types of names.

Please advice

All Comments

Leave a comment...

  • 5 Comments
    • "Mhd" <Mhd.windows-server.questionfor.info.discussions.microsoft.com> wrote in message

      news:1F2591E4-2DCC-447A-9DED-5C8E26BAB224.windows-server.questionfor.info.microsoft.com...

      > Dears;

      > I have two dns servers, Dns1 & Dns2 Dns1 is the parent of dns2. with full

      > trust relationship between them.

      DNS resolution does not care about trusts and has no such concept.

      (Only secure updates might care about this.)

      Presumably you mean you have these DNS servers on different domains.

      > I can resolve Dns1 ( short name & FQDN) from dns 2 but The opposite is not

      > true for two both types of names.

      If DNS2 holds a CHILD zone of DNS1's zone you can delegate from 1->2.

      But you need a way to get from 2->1.

      Usually methods are:

      1) Secondary on DNS2 for DNS1 zone (only method for Win2000)

      2) Stub on DNS2 for DNS1 zone

      3) Conditional Forwarding on DNS2 for DNS1 zone

      4) AD Integrated zone with Forest wide scope on both DNS2 and DNS1 for

      DNS1 zone

      > Please advice

      Herb Martin, MCSE, MVP

      http://www.LearnQuick.Com

      (phone on web site)

      #1; Mon, 19 May 2008 16:14:00 GMT
    • thx for quick response

      yes these DNS are in different segments

      Dns1 belong to Domain1

      DNs2 belong to Domian2

      domain1 is parent to domian2

      the zones are AD integrated

      I need a way to get 2 from 1

      "Herb Martin" wrote:

      > "Mhd" <Mhd.windows-server.questionfor.info.discussions.microsoft.com> wrote in message

      > news:1F2591E4-2DCC-447A-9DED-5C8E26BAB224.windows-server.questionfor.info.microsoft.com...

      > DNS resolution does not care about trusts and has no such concept.

      > (Only secure updates might care about this.)

      > Presumably you mean you have these DNS servers on different domains.

      >

      > If DNS2 holds a CHILD zone of DNS1's zone you can delegate from 1->2.

      > But you need a way to get from 2->1.

      > Usually methods are:

      > 1) Secondary on DNS2 for DNS1 zone (only method for Win2000)

      > 2) Stub on DNS2 for DNS1 zone

      > 3) Conditional Forwarding on DNS2 for DNS1 zone

      > 4) AD Integrated zone with Forest wide scope on both DNS2 and DNS1 for

      > DNS1 zone

      >

      >

      > --

      > Herb Martin, MCSE, MVP

      > http://www.LearnQuick.Com

      > (phone on web site)

      >

      >

      #2; Mon, 19 May 2008 16:15:00 GMT
    • "Mhd" <Mhd.windows-server.questionfor.info.discussions.microsoft.com> wrote in message

      news:6037F6B1-65AC-4D2C-83E1-1B52FFC2B88F.windows-server.questionfor.info.microsoft.com...

      > thx for quick response

      > yes these DNS are in different segments

      > Dns1 belong to Domain1

      > DNs2 belong to Domian2

      > domain1 is parent to domian2

      > the zones are AD integrated

      > I need a way to get 2 from 1

      It is all Win2003 then use AD Integrated for the (missing) zone(s)

      and set the Replication Scope to Forest-Wide DNS-DCs.

      Herb Martin, MCSE, MVP

      http://www.LearnQuick.Com

      (phone on web site)

      [vbcol=seagreen]

      > "Herb Martin" wrote:

      >

      #3; Mon, 19 May 2008 16:16:00 GMT
    • am sorry coz I did not mention before my OS is w2k

      "Herb Martin" wrote:

      > "Mhd" <Mhd.windows-server.questionfor.info.discussions.microsoft.com> wrote in message

      > news:6037F6B1-65AC-4D2C-83E1-1B52FFC2B88F.windows-server.questionfor.info.microsoft.com...

      > It is all Win2003 then use AD Integrated for the (missing) zone(s)

      > and set the Replication Scope to Forest-Wide DNS-DCs.

      >

      > --

      > Herb Martin, MCSE, MVP

      > http://www.LearnQuick.Com

      > (phone on web site)

      >

      >

      >

      #4; Mon, 19 May 2008 16:17:00 GMT
    • "Mhd" <Mhd.windows-server.questionfor.info.discussions.microsoft.com> wrote in message

      news:4E91459E-63AF-4D3B-A6F0-13BE2598A047.windows-server.questionfor.info.microsoft.com...

      > am sorry coz I did not mention before my OS is w2k

      Then THE Answer was in my original response to you:

      Usually methods are:

      1) Secondary on DNS2 for DNS

      Herb Martin, MCSE, MVP

      http://www.LearnQuick.Com

      (phone on web site)

      [vbcol=seagreen]

      #5; Mon, 19 May 2008 16:18:00 GMT