Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » DNS zone disappered
DNS zone disappered [message #157485] Wed, 08 July 2009 06:26 Go to next message
Alberto  is currently offline Alberto  Italy
Messages: 27
Registered: August 2009
Junior Member
Dear ALL,

I have a problem on a win2000 dns server active directory integrated.

Details are:

a registerd zone on a secondary dns server suddenly disappear (restart of
machine or dns service restart) so I have to re-create and transfer from
master.

Please , anyone of you have an idea?



Reagards

Alberto Brivio
Re: DNS zone disappered [message #157487 is a reply to message #157485] Wed, 08 July 2009 06:41 Go to previous messageGo to next message
meiweb(nospam)  is currently offline meiweb(nospam)  Germany
Messages: 1307
Registered: July 2009
Senior Member
Hello Alberto,

Please describe more detailed your setup of DNS, structure of your domain
and where the other zone is coming from. Also please stick to one posting
and do not create multiple ones.

If somebody here is able to check and trying to help you, she/he will do
it, doesn't matter how long it will take. Do not forget, in some places of
the earth is still night.:-)

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Dear ALL,
>
> I have a problem on a win2000 dns server active directory integrated.
>
> Details are:
>
> a registerd zone on a secondary dns server suddenly disappear (restart
> of machine or dns service restart) so I have to re-create and transfer
> from master.
>
> Please , anyone of you have an idea?
>
> Reagards
>
> Alberto Brivio
>
Re: DNS zone disappered [message #157493 is a reply to message #157485] Wed, 08 July 2009 08:13 Go to previous messageGo to next message
pbbergs  is currently offline pbbergs  United States
Messages: 1024
Registered: July 2009
Senior Member
Not enough info to go on. Have you check the Event Logs to see if there is
anything to go on with in there?

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
Microsoft's Thrive IT Pro of the Month - June 2009

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.

"Alberto" <assistenza@adb.it> wrote in message
news:OAH$da7$JHA.3696@TK2MSFTNGP05.phx.gbl...
> Dear ALL,
>
> I have a problem on a win2000 dns server active directory integrated.
>
> Details are:
>
> a registerd zone on a secondary dns server suddenly disappear (restart of
> machine or dns service restart) so I have to re-create and transfer from
> master.
>
> Please , anyone of you have an idea?
>
>
>
> Reagards
>
> Alberto Brivio
>
>
>
Re: DNS zone disappered [message #157502 is a reply to message #157485] Wed, 08 July 2009 09:37 Go to previous messageGo to next message
Alberto  is currently offline Alberto  Italy
Messages: 27
Registered: August 2009
Junior Member
I've read on the web many articles related to "dns zone disappearing" and
one of them seem to have the right solution for my troubles, but you can
find below some details:

Event viewer is not reporting anything wrong.

Any DNS server is a DC too.

I have two domains and two DCs each:

domain A DCA1- DCA2

domain B DCB1 - DCB2

DCA1 is the "primary" DNS server (active directory integrated) for both
domain A and domain B (every thing is ok on that machine and any other
secondary zone for domain A contained in any other DNS server)

Troubles begin for domain B's secondary zone, because any DNS server
containing that secondary zone looses the zone after DNS service restarting.


Solution was deleting the key

AD Users & Computers
Advanced Features
MicrosoftDNS

domain B (object with the same name as the disappearing zone)

************************************************************ ********************************************************

Sorry for multiple entries but as you can see the first one was named
"Microsoft" because my account hadn't been customised, and could look like a
joke.



Regards

Alberto Brivio







"Alberto" <assistenza@adb.it> ha scritto nel messaggio
news:OAH$da7$JHA.3696@TK2MSFTNGP05.phx.gbl...
> Dear ALL,
>
> I have a problem on a win2000 dns server active directory integrated.
>
> Details are:
>
> a registerd zone on a secondary dns server suddenly disappear (restart of
> machine or dns service restart) so I have to re-create and transfer from
> master.
>
> Please , anyone of you have an idea?
>
>
>
> Reagards
>
> Alberto Brivio
>
>
>
>
Re: DNS zone disappered [message #157505 is a reply to message #157502] Wed, 08 July 2009 09:55 Go to previous messageGo to next message
meiweb(nospam)  is currently offline meiweb(nospam)  Germany
Messages: 1307
Registered: July 2009
Senior Member
Hello Alberto,

With 2 domains you should use on each domain it's own AD integrated primary
zone and not the DNS server form another domain. Why did you configure it
that way?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> I've read on the web many articles related to "dns zone disappearing"
> and one of them seem to have the right solution for my troubles, but
> you can find below some details:
>
> Event viewer is not reporting anything wrong.
>
> Any DNS server is a DC too.
>
> I have two domains and two DCs each:
>
> domain A DCA1- DCA2
>
> domain B DCB1 - DCB2
>
> DCA1 is the "primary" DNS server (active directory integrated) for
> both domain A and domain B (every thing is ok on that machine and any
> other secondary zone for domain A contained in any other DNS server)
>
> Troubles begin for domain B's secondary zone, because any DNS server
> containing that secondary zone looses the zone after DNS service
> restarting.
>
> Solution was deleting the key
>
> AD Users & Computers
> Advanced Features
> MicrosoftDNS
> domain B (object with the same name as the disappearing zone)
>
> ************************************************************ **********
> **********************************************
>
> Sorry for multiple entries but as you can see the first one was named
> "Microsoft" because my account hadn't been customised, and could look
> like a joke.
>
> Regards
>
> Alberto
> Brivio
>
> "Alberto" <assistenza@adb.it> ha scritto nel messaggio
> news:OAH$da7$JHA.3696@TK2MSFTNGP05.phx.gbl...
>
>> Dear ALL,
>>
>> I have a problem on a win2000 dns server active directory integrated.
>>
>> Details are:
>>
>> a registerd zone on a secondary dns server suddenly disappear
>> (restart of machine or dns service restart) so I have to re-create
>> and transfer from master.
>>
>> Please , anyone of you have an idea?
>>
>> Reagards
>>
>> Alberto Brivio
>>
Re: DNS zone disappered [message #157507 is a reply to message #157505] Wed, 08 July 2009 10:04 Go to previous messageGo to next message
Alberto  is currently offline Alberto  Italy
Messages: 27
Registered: August 2009
Junior Member
Was not my choice, it's a no more young architecture and was implemented by
other people before me.

Anyway, if domain's rules say that I'll install another primary dns server
on the right domain.


Regards

Alberto Brivio


"Meinolf Weber [MVP-DS]" <meiweb(nospam)@gmx.de> ha scritto nel messaggio
news:ff16fb66293da8cbcdfbb445c35b@msnews.microsoft.com...
> Hello Alberto,
>
> With 2 domains you should use on each domain it's own AD integrated
> primary zone and not the DNS server form another domain. Why did you
> configure it that way?
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>> I've read on the web many articles related to "dns zone disappearing"
>> and one of them seem to have the right solution for my troubles, but
>> you can find below some details:
>>
>> Event viewer is not reporting anything wrong.
>>
>> Any DNS server is a DC too.
>>
>> I have two domains and two DCs each:
>>
>> domain A DCA1- DCA2
>>
>> domain B DCB1 - DCB2
>>
>> DCA1 is the "primary" DNS server (active directory integrated) for
>> both domain A and domain B (every thing is ok on that machine and any
>> other secondary zone for domain A contained in any other DNS server)
>>
>> Troubles begin for domain B's secondary zone, because any DNS server
>> containing that secondary zone looses the zone after DNS service
>> restarting.
>>
>> Solution was deleting the key
>>
>> AD Users & Computers
>> Advanced Features
>> MicrosoftDNS
>> domain B (object with the same name as the disappearing zone)
>>
>> ************************************************************ **********
>> **********************************************
>>
>> Sorry for multiple entries but as you can see the first one was named
>> "Microsoft" because my account hadn't been customised, and could look
>> like a joke.
>>
>> Regards
>>
>> Alberto
>> Brivio
>>
>> "Alberto" <assistenza@adb.it> ha scritto nel messaggio
>> news:OAH$da7$JHA.3696@TK2MSFTNGP05.phx.gbl...
>>
>>> Dear ALL,
>>>
>>> I have a problem on a win2000 dns server active directory integrated.
>>>
>>> Details are:
>>>
>>> a registerd zone on a secondary dns server suddenly disappear
>>> (restart of machine or dns service restart) so I have to re-create
>>> and transfer from master.
>>>
>>> Please , anyone of you have an idea?
>>>
>>> Reagards
>>>
>>> Alberto Brivio
>>>
>
>
>
Re: DNS zone disappered [message #157518 is a reply to message #157507] Wed, 08 July 2009 11:01 Go to previous message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Alberto" <assistenza@adb.it> wrote in message news:%23P%23W9T9$JHA.5020@TK2MSFTNGP04.phx.gbl...
> Was not my choice, it's a no more young architecture and was implemented by
> other people before me.
>
> Anyway, if domain's rules say that I'll install another primary dns server
> on the right domain.
>
>
> Regards
>
> Alberto Brivio


What usually happens if a zone is AD integrated, and another administrator deletes the zone on another DC, the deletion gets replicated.

If an administrator tries to create a secondary zone of an existing AD integrated zone that the DC is aware of based on it's replication scope, it will delete the zone. What doesn't make sense is with Windows 2000 in your scenario, assuming all DCs are 2000, the child domain has it;s own DomainNC, (where the zone is stored), therefore the zone in domainA would not exist in domainB, so creating a secondary, it should not delete it.

The best solution for your scenario is to confgure a parent-child delegation. My following blog should assist in configuring a parent-child delegation.

=================
If you want the child domain's admins to have control of their own resources, including DNS for their own domain, you can delegate the child zone to the child domain's DC/DNS servers. To do this, you would first create a child zone under the child zone's DC/DNS servers called child.parent.com. Then in the parent domain's DNS server, right click parent.com, choose New Delegation, type in 'child' (without the quotes), and provide the child domain's DC/DNS servers names and IP addresses. Do not change the parent zone's Replication scope. Then in the child domain's DC/DNS servers, configure a forwarder to the parent domain's DC/DNS servers. The following link has info for you to read up on concerning these steps.

How To Create a Child Domain in Active Directory and Delegate the DNS Namespace to the Child Domain:
http://support.microsoft.com/kb/255248


More specific information regarding how to configure Child domain delegation and DNS configuration:

Assuming you have the parent AD domain (the forest root) and zone already created and functional, and you've already ran dcpromo on a machine to make it a child domain DC. When you run dcpromo, you want it to use the forest root domain's DNS server to simplify things so it will register into a subfolder (the child zone) under the parent zone.

Make sure the parent DCs are only using their own DNS servers in their IP properties. If they show the local loopback, 127.0.0.1, which is what dcpromo puts in there, change it to the actual IP addresses. Do the same with the child DCs for now, meaning they are using the forest root domain DCs for DNS for the time being.

Make sure the replication scope on the parent domain's zone, we'll call domain.com, is set to Domain wide (the middle button). This puts it in the DomainDnsZones application partition for the parent domain. If set to Forest wide (the top button), it will cause a major issue with delegation. This is because of the delegation design. You don't want the zone forest wide in a parent-child delegation.

Create a zone on the child domain DC, which we'll call, child.domain.com, on the child. The replication scope should be set the same to it's own domain's DomainDnsZones app partition.

Create a reverse zones on the parent for each subnet in the parent domain's location, and set the replication scope to DomainWide (the middle button). DO NOT create a delegation for this zone.

Create a reverse zone on the parent for the child domain's location, and set the replication scope to DomainWide (the middle button). Create a delegation for this zone to the child.

Make sure the zones all allow updates.

Follow the steps in the following article to create the delegation:
How To Create a Child Domain in Active Directory and Delegate the DNS Namespace to the Child Domain:
http://support.microsoft.com/kb/255248

Make sure you configure a forwarder on the parent to your ISP's DNS.

Change the DNS IPs on the child DCs to use their own DC's as their DNS servers.
================

--
Ace

This posting is provided "AS-IS" with no warranties or guarantees and confers no rights.

Please reply back to the newsgroup/forum to benefit from collaboration among responding engineers, as well as to help others benefit from your resolution.

Ace Fekay, MCT, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging
Microsoft Certified Trainer
aceman@mvps.RemoveThisPart.org
http://twitter.com/acefekay

For urgent issues, you may want to contact Microsoft PSS directly. Please check http://support.microsoft.com for regional support phone numbers.

Previous Topic:How do I connect a new AD account to a new email address
Next Topic:DNS zone disappearing
Goto Forum:
  


Current Time: Sat Oct 21 18:51:41 EDT 2017

Total time taken to generate the page: 0.03370 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software