Microsoft windows 2000 DNS manual Administrative Tools, DNS Manager

Page 48

Registry key HKEY_Local_Machine\System\CurrentControlSet\Services\ DNSCache\Parameters.

Disabling the Caching Resolver

There are two ways to disable the caching resolver:

Manually disable the caching resolver service by typing “net stop dnscache” at the command prompt. This disables DNS server ordering, support for Plug and Play adapters, and so forth. The end result is Windows NT 4.0–like name resolution.

Setting to zero the REG_DWORD MaxCacheEntryTtlLimit value that specifies maximum limit of how long the positively answered lookup is cached. This effectively eliminates caching of any RRs, but does not disable DNS server ordering and support for Plug and Play.

Administrative Tools

Windows 2000 includes various administrative tools to support DNS servers and clients. The DNS server may be administered using MMC snap-in DNS manager, command line tool dnscmd.exe and Windows Management Instrumentation (WMI).

The command line tool ipconfig.exe may be used to administer DNS client. Namely, to initiate registration of the computer A and PTR records, display or flush the cache.

DNS Manager

The Windows 2000 implementation of DNS introduces a new DNS Manager as a Microsoft Manager Console Snap-in. It provides all the functionality necessary to administer DNS server, its zones, security, and so forth.

The DNS Manager features that deserve attention are:

The New Server Configuration Wizard, which now allows priming the root hints for a new DNS server.

The Filtering Capability, a feature useful for the servers and zones containing a large number of zones and records, respectively.

The new Security Capability that allows specification of the secondary servers to be notified of any changes on the master zone, as well as specification of the sets of servers to be sent the updated zone information.

The new security capability, that allows modification of the ACLs for the DS- integrated zones and entries in such zones.

Note: In order to administer a DNS Server you need to be at least a member of the Server Operators Group on the server running DNS Server.

For more information on the DNS Manager refer to the product documentation.

WMI Support for DNS Server Administration

The Windows Management Instrumentation (WMI) provider is a set of extensions to the Windows Driver Model (WDM), an operating system interface through which

Windows 2000 White Paper

42

Image 48
Contents Windows 2000 DNS Microsoft Corporation. All rights reserved Contents Designing a DNS Namespace for the Active Directory Summary Page DNS Fundamentals Name Services in Windows Standards and Additional ReadingHistory of DNS Draft-skwan-gss-tsig-04.txt GSS Algorithm for Tsig GSS-TSIGStructure of DNS Hierarchy of DNS Domain NamesInt/net/org Com Edu Gov Mil Army MicrosoftMit Mydomain DNS and InternetTTL Distributing the Database Zone Files and DelegationReplicating the DNS database Microsoft My domain ftp NtserverNEW Features of the Windows 2000 DNS Querying the DatabaseName Server Resolver Root-server Gov Whitehouse.gov Updating the DNS Database Time to Live for Resource RecordsActive Directory Service Storage Model Active Directory Storage and Replication IntegrationWindows 2000 White Paper Controlling Access to Zones Replication ModelZone Type Conversions Incremental Zone Transfer Protocol DescriptionDynamic Update Zone Log FileMaster DNS Server Slave DNS Server Ixfr and DS IntegrationUpdate Algorithm Dynamic Update of DNS RecordsMixed Environment Dhcp ClientStatically Configured Client Secure Dynamic UpdateRAS Client Client ReregistrationEstablishing a security context by passing security tokens Secure Dynamic Update Policy DnsUpdateProxy Group Controlling Update Access to Zones and NamesDNS Admins Group Aging and ScavengingAging and Scavenging Parameters DefaultEnableScavenging Description Scavenging PeriodRecord Life Span Configuring Scavenging Parameters Scavenging AlgorithmUnicode Character Support Interoperability ConsiderationsDomain Locator Finish DNS Record Registration and Resolver Requirements IP/DNS Compatible LocatorLdap.tcp.dc.msdcs.DnsDomainName Kerberos.tcp.dc.msdcs.DnsDomainName IP/DNS DC Locator Algorithm Discovering Site specific DCs FinishCaching Resolver Name Resolution Fully-Qualified QueryUsing Global Suffix Search Order Unqualified Single-Label QueryUsing Primary and Per-adapter Domain Names Unqualified Multi-Label QueryName Resolution Scenarios Unqualified Single-Label Query ScenariosFully-Qualified Query Scenarios Microsoft Implementation of Negative CachingDNS Server List Management Negative CachingAdministrative Tools WMI Support for DNS Server AdministrationDNS Manager Interoperability Issues Using Wins and Winsr RecordsUsing UTF-8 Characters Format DNS Server Performance Receiving Non-RFC Compliant DataUtilization Server Capacity Planning Hardware components SizingInternet Access Considerations Choosing NamesWindows 2000 White Paper Windows 2000 White Paper Windows 2000 White Paper VPN Com Yyy.com Zzz.com Windows 2000 White Paper Primary Zone YYY corporation ZZZ corporation VPN Firewall Characters in Names Computer NamesFull computer name Per-Adapter NamingIntegrating ADS with Existing DNS Structure Domain name and sites. Active Directory domain name Migration to Windows 2000 DNS DNSDeploying DNS to Support Active Directory Partitioning, and Replication Choosing your ZonesUsing Automatic Configuration Wins ReferralIxfr For More Information IxfrWindows 2000 White Paper