Windows 2000 DNS (and a sore head from banging it on the wall)

Barry Finkel b19141 at achilles.ctd.anl.gov
Wed Aug 16 17:50:51 UTC 2000


Kevin Darcy replied to Stephen Bell:

>As for the zone files themselves, surprise, they're filled with Win2K/AD junk.
>We've had instances where names got into the zones and the DC couldn't get them
>back out again: in such cases, I've had to laboriously delete all of the rogue
>names using nsupdate to restore things back to normal. If you have a large
>accumulation of muck in the zone, then it might be simpler just to re-create
>the zone and "promote" the DC all over again.
>
>Another thing to consider: does Win2K's use of underscored names require any
>special "check-names" setting?

One thing I would suggest is to take the parent zone zzz.com
and separate these subdomains into separate zones:

     _msdcs.zzz.com
     _sites.zzz.com
     _tcp.zzz.com
     _udp.zzz.com

These are the four subdomains into which Win2k AD will dynamically
register SRV records.  This way, you can allow DDNS on these four
zones without affecting the rest of the zones.  Also, it is these
zones that will contain nodename with the "_" character, so you can
use the "check-names" directive on these four zones only.
----------------------------------------------------------------------
Barry S. Finkel
Electronics and Computing Technologies Division
Argonne National Laboratory          Phone:    +1 (630) 252-7277
9700 South Cass Avenue               Facsimile:+1 (630) 252-9689
Building 221, Room B236              Internet: BSFinkel at anl.gov
Argonne, IL   60439-4844             IBMMAIL:  I1004994




More information about the bind-users mailing list