Discussion:
Can we have more than one primary zones in DNS
(too old to reply)
m***@gmail.com
2007-06-26 07:31:22 UTC
Permalink
Can we have two or more primary zones in the same DNS server. For
example, is managing Cisco.com and yahoo.com within same DNS server
possible? If yes How the DHCP server will update DNS, means whenever
it issues a lease to a client it needs to update the same in DNS
server, so my question is in which zone it will update the A record?

---
Manjunath
Ruslan R. Laishev
2007-06-26 08:20:16 UTC
Permalink
Post by m***@gmail.com
Can we have two or more primary zones in the same DNS server. For
example, is managing Cisco.com and yahoo.com within same DNS server
possible?
Sure.
Post by m***@gmail.com
If yes How the DHCP server will update DNS, means whenever
it issues a lease to a client it needs to update the same in DNS
server, so my question is in which zone it will update the A record?
See docs of your DHCP about leasing section & options.
Post by m***@gmail.com
---
Manjunath
--
+ WBR, OpenVMS [Sys|Net] HardWorker ............. Skype: SysMan-One +
Delta Telecom JSC, IMT-MC-450(CDMA2000) cellular operator
Russia,191119,St.Petersburg,Transportny per. 3 Cel: +7 (812) 716-3222
+http://starlet.deltatelecom.ru ............. Frying on OpenVMS only +
Ken Connelly
2007-06-26 12:10:54 UTC
Permalink
Yes, you can certainly have multiple primary domains served by the same
DNS server.

I'll mostly pass on the second part of the question as I don't allow
clients to update what I affectionately call "the real DNS". AD has its
own DNS servers (running on winders), which domain members are told to
use by the DHCP server. Those are visible internally to the domain, but
not to the outside world. That said, from a functional perspective, I
don't know why the zone on the DNS server that was updated would really
matter. Clients are going to ask the DNS server for answers, not a
particular zone server. As long as the authoritative server has the
answers it should have, the zone they came from shouldn't really be a
concern.

- ken
Post by m***@gmail.com
Can we have two or more primary zones in the same DNS server. For
example, is managing Cisco.com and yahoo.com within same DNS server
possible? If yes How the DHCP server will update DNS, means whenever
it issues a lease to a client it needs to update the same in DNS
server, so my question is in which zone it will update the A record?
---
Manjunath
--
- Ken
=================================================================
Ken Connelly Associate Director, Security and Systems
ITS Network Services University of Northern Iowa
email: ***@uni.edu p: (319) 273-5850 f: (319) 273-7373
m***@gmail.com
2007-06-28 07:49:24 UTC
Permalink
Post by Ken Connelly
Yes, you can certainly have multiple primary domains served by the same
DNS server.
I'll mostly pass on the second part of the question as I don't allow
clients to update what I affectionately call "the real DNS". AD has its
own DNS servers (running on winders), which domain members are told to
use by the DHCP server. Those are visible internally to the domain, but
not to the outside world. That said, from a functional perspective, I
don't know why the zone on the DNS server that was updated would really
matter. Clients are going to ask the DNS server for answers, not a
particular zone server. As long as the authoritative server has the
answers it should have, the zone they came from shouldn't really be a
concern.
- ken
Post by m***@gmail.com
Can we have two or more primary zones in the same DNS server. For
example, is managing Cisco.com and yahoo.com within same DNS server
possible? If yes How the DHCP server will update DNS, means whenever
it issues a lease to a client it needs to update the same in DNS
server, so my question is in which zone it will update the A record?
---
Manjunath
--
- Ken
=================================================================
Ken Connelly Associate Director, Security and Systems
ITS Network Services University of Northern Iowa
Thanks for your reply. As we know that client will ask for IP address
from DHCP server whenever it comes to network. Then DHCP server will
give IP address for some period of time (lease). At the same time it
needs to update the DNS server about this lease means it needs to send
host name along with IP address to DNS server. In turn DNS server will
create A record in its zone for this host. So now assume that the DNS
server is hosting example1.com, example2.com and example3.com as its
primary zones. Now the host at example3.com request for a lease and
got it from DHCP server. The DHCP server will send host name and IP
address to DNS server. Now DNS server needs to create A record in
example3.com; My question is how the DNS server will decide that it
needs to create A record for this host in example3.com only, why cant
it be in example1.com and example2.com? I don't know anything about
DHCP, Is any configuration needed at DHCP server side to work like
this? Please clarify me this. Thanks in advance.

--
Manjunath
David J Dachtera
2007-06-29 00:37:45 UTC
Permalink
Post by m***@gmail.com
Post by Ken Connelly
Yes, you can certainly have multiple primary domains served by the same
DNS server.
I'll mostly pass on the second part of the question as I don't allow
clients to update what I affectionately call "the real DNS". AD has its
own DNS servers (running on winders), which domain members are told to
use by the DHCP server. Those are visible internally to the domain, but
not to the outside world. That said, from a functional perspective, I
don't know why the zone on the DNS server that was updated would really
matter. Clients are going to ask the DNS server for answers, not a
particular zone server. As long as the authoritative server has the
answers it should have, the zone they came from shouldn't really be a
concern.
- ken
Post by m***@gmail.com
Can we have two or more primary zones in the same DNS server. For
example, is managing Cisco.com and yahoo.com within same DNS server
possible? If yes How the DHCP server will update DNS, means whenever
it issues a lease to a client it needs to update the same in DNS
server, so my question is in which zone it will update the A record?
---
Manjunath
--
- Ken
=================================================================
Ken Connelly Associate Director, Security and Systems
ITS Network Services University of Northern Iowa
Thanks for your reply. As we know that client will ask for IP address
from DHCP server whenever it comes to network. Then DHCP server will
give IP address for some period of time (lease). At the same time it
needs to update the DNS server about this lease means it needs to send
host name along with IP address to DNS server. In turn DNS server will
create A record in its zone for this host. So now assume that the DNS
server is hosting example1.com, example2.com and example3.com as its
primary zones. Now the host at example3.com request for a lease and
got it from DHCP server. The DHCP server will send host name and IP
address to DNS server. Now DNS server needs to create A record in
example3.com; My question is how the DNS server will decide that it
needs to create A record for this host in example3.com only, why cant
it be in example1.com and example2.com? I don't know anything about
DHCP, Is any configuration needed at DHCP server side to work like
this? Please clarify me this. Thanks in advance.
Those are decisions that YOU will make, and then instuct the machine
accordingly.

You should be using reserved assignments (an IP address that is always matched
to a specific MAC address). By definition, then, that MAC address is associated
with a specific host in a domain. (You don't want a machine providing virtual
hosting to have an address that might change!)
--
David J Dachtera
dba DJE Systems
http://www.djesys.com/

Unofficial OpenVMS Marketing Home Page
http://www.djesys.com/vms/market/

Unofficial Affordable OpenVMS Home Page:
http://www.djesys.com/vms/soho/

Unofficial OpenVMS-IA32 Home Page:
http://www.djesys.com/vms/ia32/

Unofficial OpenVMS Hobbyist Support Page:
http://www.djesys.com/vms/support/
Michael Corbett
2007-06-26 12:50:05 UTC
Permalink
Post by m***@gmail.com
Can we have two or more primary zones in the same DNS server. For
example, is managing Cisco.com and yahoo.com within same DNS server
possible? If yes How the DHCP server will update DNS, means whenever
it issues a lease to a client it needs to update the same in DNS
server, so my question is in which zone it will update the A record?
The DNS server can be primary for any number of domains. When the
DHCP server grants a lease it decides which A record to update.

regards
Mike
--
+-------------------------------------------------------------------------+
Michael Corbett Email: ***@process.com
Process Software Phone: 800 722-7770 x369
959 Concord St. 508 879-6994 x369
Framingham MA 01701-4682 FAX: 508 879-0042
Ken Connelly
2007-06-28 12:36:39 UTC
Permalink
The DHCP *server* does not provide dynamic dns updates to a dns server.
That is done by DHCP client services on the individual workstations.
Since the client knows its own FQDN, and gives that along with the IP
address to the DNS server, the DNS server is going to provide
information for the appropriate name, foo.example1.com,
bar.example2.com, or fubar.example3.com.

My understanding is that a winders DNS server can store its data in
either traditional zone files or actually store the information in the
Active Directory structure itself. Since you're asking questions on the
MultiNet list, however, you're presumably using MultiNet DNS. Since I
don't let clients update either MultiNet or unix DNS servers, I'm not
sure if those servers actually modify the on-disk zone files with
dynamic updates or if they just keep the dynamic stuff in memory. I
would think they would have to write to disk at least periodically, but
that's just a guess.

-ken
Post by m***@gmail.com
Post by Ken Connelly
Yes, you can certainly have multiple primary domains served by the same
DNS server.
I'll mostly pass on the second part of the question as I don't allow
clients to update what I affectionately call "the real DNS". AD has its
own DNS servers (running on winders), which domain members are told to
use by the DHCP server. Those are visible internally to the domain, but
not to the outside world. That said, from a functional perspective, I
don't know why the zone on the DNS server that was updated would really
matter. Clients are going to ask the DNS server for answers, not a
particular zone server. As long as the authoritative server has the
answers it should have, the zone they came from shouldn't really be a
concern.
- ken
Post by m***@gmail.com
Can we have two or more primary zones in the same DNS server. For
example, is managing Cisco.com and yahoo.com within same DNS server
possible? If yes How the DHCP server will update DNS, means whenever
it issues a lease to a client it needs to update the same in DNS
server, so my question is in which zone it will update the A record?
---
Manjunath
--
- Ken
=================================================================
Ken Connelly Associate Director, Security and Systems
ITS Network Services University of Northern Iowa
Thanks for your reply. As we know that client will ask for IP address
from DHCP server whenever it comes to network. Then DHCP server will
give IP address for some period of time (lease). At the same time it
needs to update the DNS server about this lease means it needs to send
host name along with IP address to DNS server. In turn DNS server will
create A record in its zone for this host. So now assume that the DNS
server is hosting example1.com, example2.com and example3.com as its
primary zones. Now the host at example3.com request for a lease and
got it from DHCP server. The DHCP server will send host name and IP
address to DNS server. Now DNS server needs to create A record in
example3.com; My question is how the DNS server will decide that it
needs to create A record for this host in example3.com only, why cant
it be in example1.com and example2.com? I don't know anything about
DHCP, Is any configuration needed at DHCP server side to work like
this? Please clarify me this. Thanks in advance.
--
Manjunath
--
- Ken
=================================================================
Ken Connelly Associate Director, Security and Systems
ITS Network Services University of Northern Iowa
email: ***@uni.edu p: (319) 273-5850 f: (319) 273-7373
Michael Corbett
2007-06-28 12:41:03 UTC
Permalink
On Jun 26, 5:10 pm, Ken Connel
Thanks for your reply. As we know that client will ask for IP address
from DHCP server whenever it comes to network. Then DHCP server will
give IP address for some period of time (lease). At the same time it
needs to update the DNS server about this lease means it needs to send
host name along with IP address to DNS server. In turn DNS server will
create A record in its zone for this host. So now assume that the DNS
server is hosting example1.com, example2.com and example3.com as its
primary zones. Now the host at example3.com request for a lease and
got it from DHCP server. The DHCP server will send host name and IP
address to DNS server. Now DNS server needs to create A record in
example3.com; My question is how the DNS server will decide that it
needs to create A record for this host in example3.com only, why cant
it be in example1.com and example2.com? I don't know anything about
DHCP, Is any configuration needed at DHCP server side to work like
this? Please clarify me this. Thanks in advance.
There is configuration on the DHCP server side that is needed.
The DNS update that is sent from the DHCP server to the DNS server says to
update the A record for host.example.com. It does not just send the host
part and let the DNS server pick the domain.

regards
Mike
--
+-------------------------------------------------------------------------+
Michael Corbett Email: ***@process.com
Process Software Phone: 800 722-7770 x369
959 Concord St. 508 879-6994 x369
Framingham MA 01701-4682 FAX: 508 879-0042
Jeremy Begg
2007-06-28 23:59:39 UTC
Permalink
Hi,
Post by Ken Connelly
The DHCP *server* does not provide dynamic dns updates to a dns server.
I'm afraid you're not correct, Ken. The DHCP server will most defintely
send a DNS update to the DNS server (if configured to do so).
Post by Ken Connelly
That is done by DHCP client services on the individual workstations.
Since the client knows its own FQDN, and gives that along with the IP
address to the DNS server, the DNS server is going to provide
information for the appropriate name, foo.example1.com,
bar.example2.com, or fubar.example3.com.
That's another way of achieving the same result. It's actually rather
annoying (in my opinion) that the default configuration of Windows is to
attempt such an update if the PC is configured via DHCP. Leads to lots of
messages in OPCOM!

Regards,

Jeremy Begg
Ken Connelly
2007-06-29 01:39:44 UTC
Permalink
Post by Jeremy Begg
Hi,
Post by Ken Connelly
The DHCP *server* does not provide dynamic dns updates to a dns server.
I'm afraid you're not correct, Ken. The DHCP server will most defintely
send a DNS update to the DNS server (if configured to do so).
That's the price I pay for answering questions for which I only know
part of the answer. My (MultiNet) DHCP server doesn't update anybody's
DNS. I wouldn't want, nor expect, it to do so.
Post by Jeremy Begg
Post by Ken Connelly
That is done by DHCP client services on the individual workstations.
Since the client knows its own FQDN, and gives that along with the IP
address to the DNS server, the DNS server is going to provide
information for the appropriate name, foo.example1.com,
bar.example2.com, or fubar.example3.com.
That's another way of achieving the same result. It's actually rather
annoying (in my opinion) that the default configuration of Windows is to
attempt such an update if the PC is configured via DHCP. Leads to
lots of
messages in OPCOM!
Winders clients are given Active Directory DNS servers to use, and those
clients send dynamic updates to those DNS servers, which are perfectly
content to let the inmates be in charge of the asylum. Only internal
systems can query those DNS servers, and the "real" DNS servers (bind 9
on unix) are run the old-fashioned way where I build the zone files to
be used.

-ken
Post by Jeremy Begg
Regards,
Jeremy Begg
Loading...