Manuals / Microsoft / Computer Equipment / Server

Microsoft windows 2000 DNS manual

Models: windows 2000 DNS

1 70

Download 70 pages 57.46 Kb

Page 57

Manual background

forwards the query to the DNS server containing the zzz.com. zone (Step 2). This server finds a delegation to the third.zzz.com. in the zzz.com. zone. It sends the query to that server (Step3) receives back the response (Step 4), passes it to the previous server (Step 5), which finally returns it to the client (Step 6).

					.

							5				4
											4
	3	4					6
		4

		5			com.			7
					com.			7
							7
		6					7
		6
		8													8	9
		8													8


yyy.com												zzz.com						someother.com.
2	9	External world / Global Network
YYY corporation																ZZZ corporation
YYY corporation																ZZZ corporation
Proxy Server		VPN					VPN						Firewall
											3			10

10

1

		YYY	ZZZ	2
				2
	.	corporation	corporation	zzz.com.
	yyy.com.	corporation	corporation	yyy.com.
	yyy.com.			yyy.com.
				11

first.yyy.com. second.yyy.com. third.yyy.com. first.zzz.com. second.zzz.com. third.zzz.com.

1		12

Zone.Name.

Primary Zone

Zone.Name.

Secondary Zone

A DNS Server, Firewall, VPN or Proxy Server

A DNS Client

Now consider the example of a corporate computer that needs to resolve an external name (that does not belong to its company).

A computer in the YYY Corporation needs to open a web page on the www.someother.com. machine. Since it is a proxy client it sends a request to the proxy server (Step 1) after it finds that the name www.someother.com. is external based on the PAC file. The proxy server sends a DNS query to the assigned DNS server (Step 2) which recursively resolves the query. It sends a query to the root server (Step 3) and receives a reference to the server that contains the com. zone (Step 4). Then it sends the query to that server (Step 5) and receives a reference to the server that contains a zone someother.com. (Step 6). It sends a query to the latter (Step 7), which resolves the query and returns the response to the server

Windows 2000 White Paper

51

Image 57

Microsoft windows 2000 DNS manual

Contents

Abstract Operating SystemWindows 2000 DNS White Paper1999 Microsoft Corporation. All rights reserved CONTENTS CONTENTSWHITE PAPER INTRODUCTIONDESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORY DESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORYGLOSSARY SUMMARYSUMMARY GLOSSARYPage DNS FUNDAMENTALS Standards and Additional Reading Name Services in WindowsHistory of DNS The Hierarchy of DNS Domain Names The Structure of DNSType of Organization DNS Domain NameDNS Domain Name Type of OrganizationClass DescriptionType DataReplicating the DNS database Querying the Database NEW FEATURES OF THE WINDOWS 2000 DNSThe following figure shows an example of both types of queries Updating the DNS Database Active Directory Storage and Replication Integration User Group Organizational Unit DnsZone DnsNode Controlling Access to Zones The Replication ModelZone Type Conversions Incremental Zone Transfer Dynamic Update The update sequence consists of the following steps Mixed Environment DHCP Server ConsiderationsDHCP Client RAS Client Statically Configured ClientClient Reregistration Dealing with Name ConflictsEstablishing a security context by passing security tokens Secure Dynamic Update Policy DnsUpdateProxy Group DNS Admins Group Reserving NamesAging and Scavenging Which zones can be scavenged Aging and Scavenging Parameters for Zones Configuration ToolZone Parameter DefaultEnableScavengingServer Parameter Aging and Scavenging Parameters for ServersConfiguration Tool DescriptionThe Figure below shows the life span of a scavengeable record The EnableScavenging parameter is set to 1 on the server Interoperability Considerations Unicode Character SupportThe Domain Locator Finish Collect the following info DNS Domain Name Domain GUID Site NameName or Domain GUID? Call IP/DNS compatible LocatorDNS Record Registration and Resolver Requirements ldap.tcp.SiteName.sites.dc.msdcs.DnsDomainName ldap.tcp.dc.msdcs.DnsDomainNameldap.tcp.pdc.msdcs.DnsDomainName ldap.tcp.gc.msdcs.DnsForestNamekerberos.tcp.dc.msdcs.DnsDomainName IP/DNS DC Locator Algorithm Discovering Site specific DCs Caching Resolver Fully-Qualified Query Unqualified Single-Label Query Using Global Suffix Search OrderUnqualified Multi-Label Query Using Primary and Per-adapter Domain NamesCONFIGURATION PARAMETER VALUEThe Unqualified Single-Label Query Scenarios Microsoft Implementation of Negative Caching The Fully-Qualified Query ScenariosDNS Server List Management Negative CachingAdministrative Tools DESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORY Interoperability Issuesupdates/sec Server configurationDNS Server Performance Queries/secServer Capacity Planning Hardware componentsSizing Choosing Names proxy unaware supporting LAT Local Address Table Expose only a public portion of the namespace to the Internet zone, that is, zzz.com., must also contain the zones containing all internal and external names of the merged companies first.yyy.com Windows 2000 White Papercorporation yyy.comPage Windows 2000 White Paper Windows 2000 White Paper corporation The solution of company YYY requires maintenance of the PAC file NetBIOS name Type Character Restrictions Maximum Length Name ServiceFull computer name Per-Adapter NamingIntegrating ADS with Existing DNS Structure domain name and sites. Active Directory domain name Migration to Windows 2000 DNS Upgrade to WindowsWill your ADS overlap your DNS name Deploying DNS to Support Active Directory SUMMARYGLOSSARY ADS Integration IXFR Dynamic Update and Secure Dynamic Update IXFR For More InformationUCS-2-Also known as Unicode is a character encoding protocol