Manuals / Microsoft / Computer Equipment / Server

Microsoft windows 2000 DNS manual Dynamic Update

Models: windows 2000 DNS

1 70

Download 70 pages 57.46 Kb

Page 21

Dynamic Update

The following diagram details the incremental transfer mechanism.

Zone Log File

Serial Number 12

changes

Serial Number 11

changes

Serial Number 10

changes

Master DNS

Server

Serial Number 12

						R
				F
			IX						s
								ge
							an
						2	ch
					r1
			be
		um
	lN
ria
Se

IXFR
Entire zo
ne
	file

S

I

ri

XF

R

Se

e

alN

u

ri

mb

al

N

u

e

m

b

e

r

1

1

c

r

1

2

c

h

a

n

g

e

h

s

an

ges

Serial Number 11

Serial Number 8

Serial Number 10

Slave DNS

Server 1

Slave DNS

Server 2

Slave DNS

Server 3

IXFR and DS Integration

As was mentioned above, IXFR is an order-based protocol, which will send the zone changes based on differences in the zone serial numbers. In a DS integrated multi-master environment, changes to a DNS zone can be applied to any master server. Therefore, different master servers will contain the zone changes applied in a different order. This can cause problems in situations where a master IXFR server that provided the zone changes to an IXFR client the last time is not available. If the IXFR client selects another master server with zone changes applied in a different order, the integrity of the IXFR client’s zone may be compromised after the incremental transfer. In this case the server initiating a zone transfer will request AXFR.

In summary, the DNS server could be a Slave and a Master with respect to the same zone at the same time. This can happen if the zone is replicated from the Master, server1, to the Slave, server2, and further from the Master, server2, to the Slave, server3. (This chain could continue further, but regardless of its length it obeys the rules described in this Section.) In this scenario the server2 will support IXFR to the server3 as long as it receives IXFR from the server1.

Dynamic Update

In a conventional DNS implementation, if the authoritative information must be changed, the network administrator has to edit the appropriate zone file manually. The Domain Name System was originally designed to support queries of a statically configured database. While the data was expected to change, the frequency of those changes was expected to be fairly low, and all updates were made as external edits to a zone’s primary master file.

The advent of dynamic, automated IP addressing using DHCP and related

Windows 2000 White Paper

15

Image 21

Microsoft windows 2000 DNS manual Dynamic Update

Contents

Abstract Operating SystemWindows 2000 DNS White Paper1999 Microsoft Corporation. All rights reserved CONTENTS CONTENTSWHITE PAPER INTRODUCTIONDESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORY DESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORYGLOSSARY SUMMARYSUMMARY GLOSSARYPage DNS FUNDAMENTALS Standards and Additional Reading Name Services in WindowsHistory of DNS The Hierarchy of DNS Domain Names The Structure of DNSType of Organization DNS Domain NameDNS Domain Name Type of OrganizationClass DescriptionType DataReplicating the DNS database Querying the Database NEW FEATURES OF THE WINDOWS 2000 DNSThe following figure shows an example of both types of queries Updating the DNS Database Active Directory Storage and Replication Integration User Group Organizational Unit DnsZone DnsNode Controlling Access to Zones The Replication ModelZone Type Conversions Incremental Zone Transfer Dynamic Update The update sequence consists of the following steps Mixed Environment DHCP Server ConsiderationsDHCP Client RAS Client Statically Configured ClientClient Reregistration Dealing with Name ConflictsEstablishing a security context by passing security tokens Secure Dynamic Update Policy DnsUpdateProxy Group DNS Admins Group Reserving NamesAging and Scavenging Which zones can be scavenged Aging and Scavenging Parameters for Zones Configuration ToolZone Parameter DefaultEnableScavengingServer Parameter Aging and Scavenging Parameters for ServersConfiguration Tool DescriptionThe Figure below shows the life span of a scavengeable record The EnableScavenging parameter is set to 1 on the server Interoperability Considerations Unicode Character SupportThe Domain Locator Finish Collect the following info DNS Domain Name Domain GUID Site NameName or Domain GUID? Call IP/DNS compatible LocatorDNS Record Registration and Resolver Requirements ldap.tcp.SiteName.sites.dc.msdcs.DnsDomainName ldap.tcp.dc.msdcs.DnsDomainNameldap.tcp.pdc.msdcs.DnsDomainName ldap.tcp.gc.msdcs.DnsForestNamekerberos.tcp.dc.msdcs.DnsDomainName IP/DNS DC Locator Algorithm Discovering Site specific DCs Caching Resolver Fully-Qualified Query Unqualified Single-Label Query Using Global Suffix Search OrderUnqualified Multi-Label Query Using Primary and Per-adapter Domain NamesCONFIGURATION PARAMETER VALUEThe Unqualified Single-Label Query Scenarios Microsoft Implementation of Negative Caching The Fully-Qualified Query ScenariosDNS Server List Management Negative CachingAdministrative Tools DESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORY Interoperability Issuesupdates/sec Server configurationDNS Server Performance Queries/secServer Capacity Planning Hardware componentsSizing Choosing Names proxy unaware supporting LAT Local Address Table Expose only a public portion of the namespace to the Internet zone, that is, zzz.com., must also contain the zones containing all internal and external names of the merged companies first.yyy.com Windows 2000 White Papercorporation yyy.comPage Windows 2000 White Paper Windows 2000 White Paper corporation The solution of company YYY requires maintenance of the PAC file NetBIOS name Type Character Restrictions Maximum Length Name ServiceFull computer name Per-Adapter NamingIntegrating ADS with Existing DNS Structure domain name and sites. Active Directory domain name Migration to Windows 2000 DNS Upgrade to WindowsWill your ADS overlap your DNS name Deploying DNS to Support Active Directory SUMMARYGLOSSARY ADS Integration IXFR Dynamic Update and Secure Dynamic Update IXFR For More InformationUCS-2-Also known as Unicode is a character encoding protocol