Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

DNS server setup over two sites

Status
Not open for further replies.
Fox1977

Fox1977

IS-IT--Management
Dec 6, 2001
98
GB
Hi there,

Just wondering if anyone can help me out with the DNS setup on a part of our network. Not sure how to go about setting it up the best way.

We have two remote sites joined by a VPN. We currently have a couple of domain controllers (running DNS) at one site. I have managed to connect the servers at the other site to the domain. I done this by changing the DNS IPs on the new servers to point to the domain controllers. Now that i proved that the link works I want to be able to have both sites up and running if the link goes down. No good if the link goes down and it pulls a site down.

What is the best way to setup the DNS on the remote site so it automatically mirrors any DNS changes at the other end and works independently?

Thanks in advance



 
Sort by date Sort by votes
Hello fox

when you say two sites, do you mean two AD sites?

From what I understand of your situation you have 1 site with domain controllers and another site that just contains servers whose DNS servers are those of the domain controllers in the 1st site.

I would suggest that you install a domain controller at the 2nd site and then change the DNS server IPs of those servers to the newly installed domain controllers. This way if the link went down users at that site can logon and also do DNS lookups. As the DNS records will in AD replication will happen on the fly and you can be assured that the records will be up to date.

If you cant install a domain controller, then you'll need a standard DNS server, this will be the secondary and the zones on the 1st site primary. This setup is not great but will suffice for your needs.
 
Upvote 0 Downvote
Also, if you install a DC, which I recommend as well, be sure that your DNS zones are active directory integrated. The second thing to watch out for is the forwarders to the Internet.

If you rely on DNS upstream across your VPN to your main site and even if you provide DNS locally at the remote site, if the VPN breaks so will your Internet access.

I'm assuming this remote site has Internet...if that is the case, then add the DNS of your ISP to the forwarder within the DNS server your installing. Now you'll have local authentication, internal Active Directory DNS and Internet DNS no matter if the VPN is up or not.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
642
suncit
suncit
MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
405
MaioMaio
MaioMaio
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
490
Aquiles Vidal
Aquiles Vidal
antonio_dsanchez
  • Locked
  • Question
post-installation WSUS windows server 2016
Replies
0
Views
412
antonio_dsanchez
antonio_dsanchez
jamescpp
  • Locked
  • Question
Windos OpenSSH server vulnerability
Replies
0
Views
502
jamescpp
jamescpp

Part and Inventory Search

Sponsor

Back
Top