Implementation of DNS in Windows 2000 (1)

Source: Internet
Author: User
Tags subdomain

New features provided by DNS

Supports Active Directory AD)
Unlike NT 4.0, the domain name of the Active Directory in Windows 2000 Server adopts a DNS name similar to that in the Internet, and the DNS is integrated into the design and implementation of the Active Directory. If the Active Directory is installed on the Server, Windows 2000 Server automatically installs and configures the DNS service for the Active Directory.
Supports dynamic updates
The DNS service in Windows 2000 Server allows clients running Windows 2000 to dynamically register their domain names and IP addresses on the DNS Server, simplifying management.
Supports incremental zone transfer between DNS servers
Multiple DNS servers in the region need to copy and synchronize Domain Name Space information through region transfer. Early DNS uses full-region transfer, that is, all domain name information needs to be completely copied. in Windows 2000 Server, DNS supports incremental-region transfer, and DNS servers only copy the changed part of the region, instead of all information.
DNS Planning
Before installing the DNS service, you need to plan the DNS to determine the domain name space, whether the DNS is integrated with the Active Directory, and whether the secondary DNS server is required.
In our example, the domain name to be implemented on the Intranet is ha. epnet, not integrated with the Active Directory, has two DNS servers on the network, one is the master server Server2, one is the auxiliary server Server3, the Intranet is divided into two network segments: 10.41.100.0 and 10.41.101.0, the subnet mask is 255.255.255.0.
Install and configure the master server server2.
Install DNS
Before installing the DNS Server for Windows 2000 Server, you must correctly configure the TCP/IP protocol for the Windows 2000 Server, and require static IP Address Configuration and correct domain suffix. The correct domain suffix is required because it affects the creation of the starting Authority (SOA) and name server NS in DNS. In this example, the domain Suffix of the server is the domain name ha. epnet to be implemented.
1. Click Start> set> control panel on Server 2 to open the control panel.
2. Double-click "Add/delete programs" and click "Add/delete Windows Components". The "Windows component wizard" window appears. Click "Network Service" and click "details". The "network service window" is displayed ".
3. In "network service sub-components", select "Domain Name Service System (DNS)", click "OK", and then click "Next" to install as prompted.
4. restart the system after the installation is complete.
Configure the DNS Region
After the DNS server is installed, you need to create a region zone in DNS) to implement the domain name.
A region is an integral part of the DNS domain name space. DNS allows the Domain Name Space to be divided into several regions. Each region stores the name information of one or more DNS domains and stores them as independent files on disks. Regions and domains are different. For a DNS domain name, a region is a storage database. When the domain used to create the region needs to be added to the subdomain, the subdomain can be added to the region to become a part of the region, or create another region for the subdomain, assign the subdomain to the newly created region.
There are three types of zones in Windows 2000 Server DNS: areas integrated with the Active Directory, standard primary areas, and standard secondary areas. The region integrated with the Active Directory must be installed on the domain controller. The domain name information in the new region is stored in the Active Directory, and the region information can be updated on multiple DNS servers. The main area of the standard is the area used by DNS in Windows NT 4.0. It saves domain name information to a standard text file. Only one DNS server can maintain and process updates in the standard primary region, which is called the primary server. To use multiple master servers, you must use the region integrated with the Active Directory. The standard secondary area is a copy of the existing area. It provides balanced processing and fault tolerance capabilities for the primary server. It is created on the secondary server and the secondary server can only copy information from the primary server.
Based on the DNS search area type, the DNS area can be divided into forward search areas and reverse search areas. Forward search is the main function of the DNS server. It resolves the corresponding IP address based on the computer's DNS name, and reverse search resolves its DNS name based on the computer's IP address.
Next we will create a standard main area for forward search on the master server Server2 to implement the domain name. The name of the region is named ha. epnet.
1. Create Standard main areas for positive search
In Windows 2000 Server, the DNS management tool is the DNS console.
1. Click Start> program> Administrative Tools> DNS on Server 2 to open the DNS console.
2. Expand the corresponding DNS server in the console tree. If the DNS server is not listed, select "DNS" in the console tree, click "operation"> "connect to computer" in the console menu, and select the computer to connect.
3. In the console tree, click "Forward search area ". Click "operation"> "New Region" in the menu. The "New region wizard" window is displayed, and click "Next ".
4. Select "Standard main area" as the region type ". If the DNS region is not created on the domain controller of the Active Directory, the "region integrated with the Active Directory" Option Button in the region type is unavailable. Click "Next ".
5. enter the name of the region to be created ha. epnet. Click "Next ".
6. Select to create a new region file named ha. epnet. dns. Click "Next" and click "finish ".
Region ha. epnet appears under "Forward search Region" in the console tree.
Ii. Create Standard main areas for reverse search

In most DNS searches, the client generally performs a forward search. DNS also provides reverse search, allowing the client to search for its DNS name based on the IP address of a computer. Domain Name Information for reverse search is saved in the reverse search area. To perform reverse search, you must create a reverse search area on the DNS server. A special domain in-addr.arpa is defined in the DNS standard, and the domain in the reverse search area is a subdomain of the domain in-addr.arpa.
When you create a reverse search area in DNS, the name of the reverse search area is formed by adding the in-addr.arpa to the reverse order of the decimal number of the IP address to be reverse search. For example, to provide reverse search for hosts in the network segment 10.41.100.0, you must create a reverse search area of 100.41.10.in-addr. arpa. For different network segments, you must create different reverse search regions based on the network addresses.
In this example, there are two network segments 10.41.100.0 and 10.41.101.0. You need to create reverse search areas for the two network segments respectively.

1. Open the DNS console on Server 2 and click "reverse search Region" in the DNS console tree ". Click "operation"> "New Region" in the menu. The "New region wizard" window is displayed, and click "Next ".
2. Select "Standard main area" as the region type ". Click "Next ".
3. For the network segment 10.41.100.0, enter the network number 10.41.100. Click "Next ".
4. Select to create a new region file named 100.41.10.in-addr. arpa. dns. Click "Next"> "finish ".
Repeat the preceding operation for the network segment 10.41.101.0. in step 3, enter the network number 10.41.101 and create the region file 101.41.10.in-addr. arpa. dns.
In the "reverse search area" in the console tree, two reverse search areas corresponding to the two network segments are displayed, and the names are "10.41.100.x Subnet" and "10.41.101.x Subnet ".


Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.