Zone transfers from Win2K AD-DNS to BIND

dlimanov at sct.com dlimanov at sct.com
Tue Dec 23 17:48:46 UTC 2003


If FILE option is the option we've got, anyone knows what format does
the actual file need to be? Is there a template I could use to see the
layout of the data?
I would then be able to script an export from AD-DNS and format the
output to be used in BIND..
Thanks,

Dimitri



|---------+---------------------------->
|         |           phn at icke-reklam.i|
|         |           psec.nu          |
|         |           Sent by:         |
|         |           bind-users-bounce|
|         |           @isc.org         |
|         |                            |
|         |                            |
|         |           12/23/2003 12:38 |
|         |           PM               |
|         |                            |
|---------+---------------------------->
  >--------------------------------------------------------------------------------------------------------------|
  |                                                                                                              |
  |       To:       comp-protocols-dns-bind at isc.org                                                              |
  |       cc:                                                                                                    |
  |       Subject:  Re: Zone transfers from Win2K AD-DNS to BIND                                                 |
  >--------------------------------------------------------------------------------------------------------------|



dlimanov at sct.com wrote:
> Hello
> Here's the situation: our company was purchased a while ago by
another
> company. They're on WinNT, we're on Win2000 AD. We kept our domain
> name and our "old" naming convention and DNS suffix stayed the same
> (oldcompany.com) because it's close to impossible to rename Win2000
AD
> without some major PITA. Everything's good, but name resolution for
> machines in our office only works for people that have the same DNS
> suffix of oldcompany.com. No one from headquarters can hit anything
on
> our network by name, since their DNS suffix is newcompany.com.
> So, we decided to setup one of their DNS servers as secondary to our
> AD-integrated DNS server so it'd suck in our oldcompany.com zone and
> people on their end would be able to resolve these machines by name.
> I've setup Zone transfers, notifies and enabled BIND secondaries on
> our DNS server. However, on the other end they're using BIND and
their
> DNS admin is telling me that in order for them to setup their BIND
> server as secondary, in NAMED.CONF he needs full path to the file
that
> has all DNS info, like oldcompany.com.dns. The problem with that is
> our DNS server is AD-integrated and such file doesn't exist - all
DNS
> records are stored in Registry and AD.
> In theory, I could do an export right from DNS MMC snap-in to export
> everything to a tab-delimited text file but I'm not sure that BIND
> requires special file format for zone transfers. If anyone knows of
> any other way to setup BIND as a secondary for W2K AD-integrated DNS
> server and make zone transfers work, please let me know - I've
search
> everywhere but couldn't find an answer to this.
> Thanks in advance,

> Dimitri

A bind nameserver runnimg as slave has an OPTIONAL statement "file",
this file is used to keep a copy of the transferred zone. It's
only used when the slave is restarted ( as authority data until
a zonetransfer has been done or deemed unneded).

So the admin seems wrong.

Your problems are large however. You seem to opt for a
dns-space isolated from Internet, and this can only be
done good is all nameservers see the same universe.

There is some of your options discussed in "Managing DNS and bind"
from o'reilly.




--
Peter Håkanson
        IPSec  Sverige      ( At Gothenburg Riverside )
           Sorry about my e-mail address, but i'm trying to keep spam
out,
                remove "icke-reklam" if you feel for mailing me.
Thanx.








More information about the bind-users mailing list