Microsoft windows 2000 DNS manual

A computer in the ZZZ Corporation needs to resolve a DNS query for www.zzz.com. It submits the query to the assigned DNS server (Step 1). If its cache contains the necessary data, the server will respond to the client. Otherwise the server forwards the query to the DNS server containing the zzz.com. zone (Step 2). Since the server is authoritative for the name www.zzz.com. it resolves the query and returns the response to the client through the forwarding DNS server (Steps 3-4). At this point it is important to emphasize the significance of the fact that the zzz.com. zone on the internal DNS server contains both internal and external names. If it contained only internal names then this query would not be resolved and name error would be returned to the client.

Finally, consider an example of a corporate computer that needs to resolve a host name from the private namespace of a merged company.

.

com.

yyy.com.	zzz.com.	someother.com.
	External world / Global Network

YYY corporation
Proxy Server	VPN

4

	5
	.
2	yyy.com.
	yyy.com.
3

YYY corporation

ZZZ corporation

VPN Firewall

	ZZZ
	corporation	2
	corporation	zzz.com.
		zzz.com.
		yyy.com.
		3

first.yyy.com. second.yyy.com. third.yyy.com. first.zzz.com. second.zzz.com. third.zzz.com.


1				6																													1												4

Zone.Name.	Primary Zone

Zone.Name.	Secondary Zone

A DNS Server, Firewall, VPN or Proxy Server				A DNS Client

A computer in the YYY Corporation needs to contact a computer myname.zzz.com.

Windows 2000 White Paper

54

Image 60

Microsoft windows 2000 DNS manual YYY corporation ZZZ corporation VPN Firewall

Contents

Windows 2000 DNS Microsoft Corporation. All rights reserved Contents Designing a DNS Namespace for the Active Directory Summary Page DNS Fundamentals Name Services in Windows Standards and Additional Reading History of DNS Draft-skwan-gss-tsig-04.txt GSS Algorithm for Tsig GSS-TSIG Structure of DNS Hierarchy of DNS Domain Names Int/net/org Com Edu Gov Mil Army MicrosoftMit Mydomain DNS and Internet TTL Distributing the Database Zone Files and Delegation Replicating the DNS database Microsoft My domain ftp Ntserver NEW Features of the Windows 2000 DNS Querying the Database Name Server Resolver Root-server Gov Whitehouse.gov Updating the DNS Database Time to Live for Resource Records Active Directory Service Storage Model Active Directory Storage and Replication Integration Windows 2000 White Paper Controlling Access to Zones Replication ModelZone Type Conversions Incremental Zone Transfer Protocol Description Dynamic Update Zone Log FileMaster DNS Server Slave DNS Server Ixfr and DS Integration Update Algorithm Dynamic Update of DNS Records Mixed Environment Dhcp Client Statically Configured Client Secure Dynamic UpdateRAS Client Client Reregistration Establishing a security context by passing security tokens Secure Dynamic Update Policy DnsUpdateProxy Group Controlling Update Access to Zones and Names DNS Admins Group Aging and Scavenging Aging and Scavenging Parameters DefaultEnableScavenging Description Scavenging Period Record Life Span Configuring Scavenging Parameters Scavenging Algorithm Unicode Character Support Interoperability Considerations Domain Locator Finish DNS Record Registration and Resolver Requirements IP/DNS Compatible Locator Ldap.tcp.dc.msdcs.DnsDomainName Kerberos.tcp.dc.msdcs.DnsDomainName IP/DNS DC Locator Algorithm Discovering Site specific DCs Finish Caching Resolver Name Resolution Fully-Qualified Query Using Global Suffix Search Order Unqualified Single-Label Query Using Primary and Per-adapter Domain Names Unqualified Multi-Label Query Name Resolution Scenarios Unqualified Single-Label Query Scenarios Fully-Qualified Query Scenarios Microsoft Implementation of Negative CachingDNS Server List Management Negative Caching Administrative Tools WMI Support for DNS Server AdministrationDNS Manager Interoperability Issues Using Wins and Winsr RecordsUsing UTF-8 Characters Format DNS Server Performance Receiving Non-RFC Compliant DataUtilization Server Capacity Planning Hardware components Sizing Internet Access Considerations Choosing Names Windows 2000 White Paper Windows 2000 White Paper Windows 2000 White Paper VPN Com Yyy.com Zzz.com Windows 2000 White Paper Primary Zone YYY corporation ZZZ corporation VPN Firewall Characters in Names Computer Names Full computer name Per-Adapter Naming Integrating ADS with Existing DNS Structure Domain name and sites. Active Directory domain name Migration to Windows 2000 DNS DNS Deploying DNS to Support Active Directory Partitioning, and Replication Choosing your Zones Using Automatic Configuration Wins Referral Ixfr For More Information Ixfr Windows 2000 White Paper