Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Zone Transfers

Status
Not open for further replies.
silpion

silpion

IS-IT--Management
Feb 21, 2003
9
PT
I have this configuration at home (for testing)

Modem -> Broadband Router -> ISA server -> DC and others

The ISA has 2 interfaces, one of them connected to the router network (192.168.x.x) the other connected to the intranet (172.20.x.x). Everything is working fine in terms of connectivity between both and in access to all allowed protocols from the workstations in the intranet.

Both the DC and the ISA server are Domain Controllers,
each of its own forest, the ISA is a stand alone server, has DNS and DNS has only its own IP, no other records. The DC has the records relative to the other machines on the internal network.

Problem: When I define the primary zone in the DC domain as a secondary zone in the ISA (not that I SHOULD... just for experimenting purposes) I manage to transfer it and everything works fine.

When I do the opposite, that is, when I define the primary zone of the ISA server as a secondary zone on the DC I cannot make the transfer

Note: I allow zone tranfers for any server, and still doesn't works in one direction.
IN ISA I allowed all protocols related to DNS (Zone transfer, Query, etc...) and still it doesen't works.
on the DC when I ping the internal zone name, the DC responds (something like DC.intranet.local) BUT I cannot ping the other zone not even in the ISA (say, ISA.dmz.local)

Any suggestions would be greatly appreciated :)






 
Sort by date Sort by votes
Both the DC and the ISA server are Domain Controllers,
each of its own forest, the ISA is a stand alone server, has DNS and DNS has only its own IP, no other records.
Could you clarify? A server is either a domain controller or a stand alone server. It can't be both. Have you checked the logs for error messages? Good luck.

Glen A. Johnson
If you're from Northern Illinois/Southern Wisconsin check out Tek-Tips in Chicago, Illinois Forum.

TTinChicago
 
Upvote 0 Downvote
Check out
Getaclue.com
Found it interesting, not sure if it pertains to your problem.

Glen A. Johnson
If you're from Northern Illinois/Southern Wisconsin check out Tek-Tips in Chicago, Illinois Forum.

TTinChicago
 
Upvote 0 Downvote
Clarification:

When I said a standalone server I meant an ISA which is a DC of it's own domain and is alone on that domain :)

The error logs on both DNS machines show nothing, there are no errors, excpet that the DC of the Intranet isn't able to load the zone of the other name server (the ISA)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

tbright
  • Locked
  • Question
DNS reverse lookup errors: zone 1.168.192.in-addr.arpa/IN: has no NS records
Replies
1
Views
12K
tbright
tbright
Nick Ellson
  • Locked
  • Question
Bind9 with RPZ and local forwarding zones?
Replies
1
Views
10K
Nick Ellson
Nick Ellson
dikidushi
  • Locked
  • Question
DC/DNS Zone
Replies
0
Views
111
dikidushi
dikidushi
EAdams2009
  • Locked
  • Question
Root URL Zone file question
Replies
0
Views
378
EAdams2009
EAdams2009
figunet
  • Locked
  • Question
How to remove a zone in bind
Replies
0
Views
73
figunet
figunet

Part and Inventory Search

Sponsor

Back
Top