Image and video hosting by TinyPic
Forum Home Forum Home > Computers > Computer Discussion
  New Posts New Posts RSS Feed - Proper DNS setup
  FAQ FAQ  Forum Search   Events   Register Register  Login Login


Proper DNS setup

 Post Reply Post Reply
Author
Message
reaper View Drop Down
Newbie
Newbie
Avatar

Joined: 01 Nov 2018
Status: Offline
Points: 14
Post Options Post Options   Thanks (0) Thanks(0)   Quote reaper Quote  Post ReplyReply Direct Link To This Post Topic: Proper DNS setup
    Posted: 13 Nov 2018 at 12:36pm
Proper domain controller DNS setup is vital for Active Directory to work properly. Best practice dictates that each domain controller should be setup with a different DNS server as it's preferred DNS server, and and the loopback address (127.0.0.1) as it's alternate DNS server. If you have more than 2 DNS servers in your domain or forest, you should setup a pattern whereby they all have different primary DNS partners, so that each server is used as someone else's primary.


If you have just 2 DC's

DC1: 192.168.1.2
DC2: 192.168.1.3

Then

DC 1 Static DNS should be: Preferred: 192.168.1.3 Alternate: 127.0.0.1
DC 2 Static DNS should be: Preferred: 192.168.1.2. Alternate: 127.0.0.1

If you have 3 or more DC's

DC1: 192.168.1.2
DC2: 192.168.1.3
DC3: 192.168.1.4

Then

DC 1 Static DNS should be: Preferred: 192.168.1.3 Alternate: 127.0.0.1
DC 2 Static DNS should be: Preferred: 192.168.1.4. Alternate: 127.0.0.1
DC 3 Static DNS should be: Preferred: 192.168.1.2. Alternate: 127.0.0.1


If you have more than one site, rely on AD Sites and Services to ensure replication occurs between the sites. If possible, do not point one site's DC's DNS to the other site's DNS. Each site should have two DC's, each having the other DC's IP as the preferred DNS all within the same site.

This is done to ensure that each DC can find its replication partners. Also, a server will reboot faster if an already up and running DC is providing DNS.

Why should you use 127.0.0.1 vs. the IP of the server?

127.0.0.1 is not just a different ip address to the machine ip address, it's a different interface as well. 127.0.0.1 should not be seen on the local network. It's a special internal IP address for the loopback adapter. The IP of the server on the other hand is assigned to the network adapter.

Either/or will work, however best practice is to use the local loopback 127.0.0.1 as the IP will never change. Another reason is that using the local loopback does not initiate the network adapter drivers as it is a different interface adapter card

Think of it as a different interface. A different network card.


https://technet.microsoft.com/en-us/library/ff807362(v=ws.10).aspx

http://serverfault.com/questions/394804/what-should-the-order-of-dns-servers-be-for-an-ad-domain-con...


Back to Top
Sponsored Links


Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down

Forum Software by Web Wiz Forums® version 12.01
Copyright ©2001-2018 Web Wiz Ltd.

This page was generated in 0.117 seconds.