Best practice of DNS configuration in win 2008 AD

Best practice of DNS configuration in win 2008 AD

Postby guest » Fri Sep 19, 2008 4:08 pm

You need to know the best practice of DNS configuration in AD network with
several DNS servers.

Issue Analysis:
Firstly, DNS server's best setting is determined by environment. Such as
network structure, client number, frequency of records changing and so on.
However, Microsoft has set the default setting that suitable for most
scenario. That you need to decide is:
1. Replication scope.
2. AD integrated or not.
3. Secure update or not.
4. Forwarding or using Root hint

About four choice above, we usually use:
1. Replication scope.
a) For domain zone, we use "replicate to all dns server in this domain"
b) For forest root zone, we use "replicate to all dns server in this forest"
2. Zone storage.
a) AD integrated zone.
3. Update type.
a) Secure update only
4. Forwarding.
a) Forward name query outside of your domain to external dns server.
Information related:
1. DNS Server configuration
http://technet.microsoft.com/en-us/libr ... 35848.aspx

2. Managing DNS Server Configuration and Security
http://technet.microsoft.com/en-us/libr ... 22543.aspx

3. Best Practice Active Directory Design for Managing Windows Networks
(DNS part)
http://technet.microsoft.com/en-us/libr ... .aspx#EGAA
http://technet.microsoft.com/en-us/libr ... .aspx#EBAA

4. Best practices for DNS client settings in Windows 2000 Server and in
Windows Server 2003
http://support.microsoft.com/default.as ... -us;825036
