Manuals / Microsoft / Computer Equipment / Server

Microsoft windows 2000 DNS manual Windows 2000 White Paper

Models: windows 2000 DNS

1 70

Download 70 pages 57.46 Kb

Page 59

Manual background

.

com.

yyy.com.

zzz.com.

someother.com.

2

3

External world / Global Network

YYY corporation

ZZZ corporation

Proxy Server

VPN

VPN

Firewall


		4					.
1

yyy.com.

YYY corporation

ZZZ corporation

2

zzz.com.

yyy.com. 3

first.yyy.com. second.yyy.com. third.yyy.com. first.zzz.com. second.zzz.com. third.zzz.com.

1				4

Zone.Name.

Primary Zone

Zone.Name.

Secondary Zone

A DNS Server, Firewall, VPN or Proxy Server				A DNS Client

Now consider an interesting case of a corporate computer that needs to resolve an external name of a computer from its own company.

A computer in the YYY Corporation needs to open a web page on the www.yyy.com. machine. Since it is a proxy client it sends a request to the proxy server (Step 1) after it finds that the name www.yyy.com. is external, based on the PAC file. The proxy server sends a DNS query to the assigned DNS server (Step 2) which happens to be authoritative for www.yyy.com. The DNS server resolves the query and returns the response to the proxy client (Step 3). Finally the proxy server uses the obtained IP address of www.yyy.com. to contact it and provides necessary info to the client (Step 4).

Windows 2000 White Paper

53

Image 59

Microsoft windows 2000 DNS manual Windows 2000 White Paper

Contents

White Paper Operating SystemAbstract Windows 2000 DNS1999 Microsoft Corporation. All rights reserved INTRODUCTION CONTENTSCONTENTS WHITE PAPERDESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORY DESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORYGLOSSARY SUMMARYGLOSSARY SUMMARYPage DNS FUNDAMENTALS Standards and Additional Reading Name Services in WindowsHistory of DNS The Hierarchy of DNS Domain Names The Structure of DNSType of Organization DNS Domain NameType of Organization DNS Domain NameData DescriptionClass TypeReplicating the DNS database Querying the Database NEW FEATURES OF THE WINDOWS 2000 DNSThe following figure shows an example of both types of queries Updating the DNS Database Active Directory Storage and Replication Integration User Group Organizational Unit DnsZone DnsNode Zone Type Conversions Controlling Access to ZonesThe Replication Model Incremental Zone Transfer Dynamic Update The update sequence consists of the following steps DHCP Client Mixed EnvironmentDHCP Server Considerations Dealing with Name Conflicts Statically Configured ClientRAS Client Client ReregistrationEstablishing a security context by passing security tokens Secure Dynamic Update Policy DnsUpdateProxy Group Aging and Scavenging DNS Admins GroupReserving Names Which zones can be scavenged DefaultEnableScavenging Configuration ToolAging and Scavenging Parameters for Zones Zone ParameterDescription Aging and Scavenging Parameters for ServersServer Parameter Configuration ToolThe Figure below shows the life span of a scavengeable record The EnableScavenging parameter is set to 1 on the server Interoperability Considerations Unicode Character SupportThe Domain Locator Call IP/DNS compatible Locator Collect the following info DNS Domain Name Domain GUID Site NameFinish Name or Domain GUID?DNS Record Registration and Resolver Requirements ldap.tcp.gc.msdcs.DnsForestName ldap.tcp.dc.msdcs.DnsDomainNameldap.tcp.SiteName.sites.dc.msdcs.DnsDomainName ldap.tcp.pdc.msdcs.DnsDomainNamekerberos.tcp.dc.msdcs.DnsDomainName IP/DNS DC Locator Algorithm Discovering Site specific DCs Caching Resolver Fully-Qualified Query Unqualified Single-Label Query Using Global Suffix Search OrderUnqualified Multi-Label Query Using Primary and Per-adapter Domain NamesThe Unqualified Single-Label Query Scenarios CONFIGURATION PARAMETERVALUE Negative Caching The Fully-Qualified Query ScenariosMicrosoft Implementation of Negative Caching DNS Server List ManagementAdministrative Tools DESIGNING A DNS NAMESPACE FOR THE ACTIVE DIRECTORY Interoperability IssuesQueries/sec Server configurationupdates/sec DNS Server PerformanceSizing Server Capacity PlanningHardware components Choosing Names proxy unaware supporting LAT Local Address Table Expose only a public portion of the namespace to the Internet zone, that is, zzz.com., must also contain the zones containing all internal and external names of the merged companies yyy.com Windows 2000 White Paperfirst.yyy.com corporationPage Windows 2000 White Paper Windows 2000 White Paper corporation The solution of company YYY requires maintenance of the PAC file Per-Adapter Naming Type Character Restrictions Maximum Length Name ServiceNetBIOS name Full computer nameIntegrating ADS with Existing DNS Structure domain name and sites. Active Directory domain name Will your ADS overlap your DNS name Migration to Windows 2000 DNSUpgrade to Windows Deploying DNS to Support Active Directory SUMMARYGLOSSARY ADS Integration IXFR Dynamic Update and Secure Dynamic Update IXFR For More InformationUCS-2-Also known as Unicode is a character encoding protocol