Bind & Win 2k question
Treptow, Craig
Treptow.Craig at principal.com
Thu Jul 5 12:51:50 UTC 2001
Hi. I have BIND DNS servers that are updated by the W2K servers. I created subdomains for them to update, and allowed them to update the reverse as well. There is no DNS server on any Windows machine. It works quite well. Technically, you don't have to allow updates at all, as during the upgrade process, a file will be written with the DNS updates if it can't actually update DNS. Then, you can update DNS by hand with the contents of these files.
What I did can be found in the 4th edition of "DNS and BIND", as well as online. I can't remember where this is at the moment though. You can search the archives of this list at: http://www.isc.org/ml-archives/, but it appears to be dead at the moment.
Anyway....
So basically, what I did on our internal DNS infrastructure was:
Create corp.principal.com, _tcp.corp.principal.com, _udp.corp.principal.com, _msdcs.corp.principal.com, _sites.corp.principal.com
Allow updates to each of these, plus our reverse 131.162.in-addr.arpa
Here are the snippets from the config:
zone "corp.principal.com" IN {
type master;
file "corp.pfg.zone";
allow-update { windows2000-servers; 162.131.2.17; };
allow-transfer { localhost; dns-secondary-servers; };
};
zone "_tcp.corp.principal.com" IN {
type master;
file "_tcp.corp.pfg.zone";
allow-update { windows2000-servers; 162.131.2.17; };
allow-transfer { localhost; dns-secondary-servers; };
};
zone "_udp.corp.principal.com" IN {
type master;
file "_udp.corp.pfg.zone";
allow-update { windows2000-servers; 162.131.2.17; };
allow-transfer { localhost; dns-secondary-servers; };
};
zone "_msdcs.corp.principal.com" IN {
type master;
file "_msdcs.corp.pfg.zone";
allow-update { windows2000-servers; 162.131.2.17; };
allow-transfer { localhost; dns-secondary-servers; };
};
zone "_sites.corp.principal.com" IN {
type master;
file "_sites.corp.pfg.zone";
allow-update { windows2000-servers; 162.131.2.17; };
allow-transfer { localhost; dns-secondary-servers; };
};
zone "131.162.in-addr.arpa" IN {
type master;
file "db.162.131";
allow-update { windows2000-servers; 162.131.2.17; };
allow-transfer { localhost; dns-secondary-servers; netmgmt-secondary-servers; };
};
> -----Original Message-----
> From: joe [mailto:bonggo at rocketmail.com]
> Sent: Wednesday, July 04, 2001 5:34 PM
> To: comp-protocols-dns-bind at moderators.isc.org
> Subject: Bind & Win 2k question
>
>
>
>
> Hello,
>
> I currently run bind 8.2.3 quite happily. Another individual would
> like to update about 10 win nt4 servers to win2k. I've been informed
> that with the win2k upgrade, DNS is required. My questions are :
>
> 1) If DNS is setup on the PDC, what role should my bind servers
> play(master/slave/?). I would rather Bind run the whole show.
>
> 2) Since all clients point to my bind servers can I simply create a
> sub-domain and forward the requests to the new MS DNS to handle?
> Would the NS record in the db file I create point to the MS DNS
> server?
>
> 3) How would I handle reverse mapping with a sub-domain? With dynamic
> updates won't my existing reverse file get "updated" ?
>
> I did read the article in Linux magazine (Cricket Liu) describing a
> method to implement Bind with win2k, but I wasn't clear on the role
> that Win2k itself would play. Do I even need to have a DNS server
> running on the Win2k PDC ?
>
> I know this topic has been talked about, but these details I'm not
> clear on. Thank you for your time.
>
> Joe
>
More information about the bind-users
mailing list