W2K12 AD Design Notes – DNS Zone Replication


Current W2K3 AD DNS Zone is replicated on Domain bases, which is not easy to maintain and support. The right approach should be Forest-Wide, including Reverse Zone

Zone replication scope

Description

Remarks

All DNS servers in the forest that are domain controllers running Windows Server 2003 ++

Replicates zone data to all Windows Server 2003 ++ DCs running the DNS in the AD DS forest. This option replicates zone data to the ForestDNSZones partition.

Forest Level

All DNS servers in the domain that are domain controllers running Windows Server 2003 ++

Replicates zone data to all Windows Server 2003 ++ DCs running the DNS in the AD domain. This option replicates zone data to the DomainDNSZone partition. It is the default setting for DNS zone replication.

Domain Level (default)

All domain controllers in the AD domain

Replicates zone data to all DCs in the AD domain. If you want Windows 2000 DNS servers to load an AD–integrated zone, you must specify this scope for that zone.

Legacy

All DCs in a specified application directory partition

Replicates zone data according to the replication scope of the specified application directory partition. For a zone to be stored in the specified application directory partition, the DNS server hosting the zone must be enlisted in the specified application directory partition. Use this scope when you want zone data to be replicated to domain controllers in multiple domains but you do not want the data to replicate to the entire forest

Too complex

 

Reference

http://blogs.chrisse.se/2011/04/10/are-you-storing-your-ad-integrated-dns-zones-in-the-dns-application-partitions-ncs/

Advertisements
This entry was posted in AD. Bookmark the permalink.

One Response to W2K12 AD Design Notes – DNS Zone Replication

  1. jonson says:

    Zone forwarder is integrated with AD and will be replicated as well 😦

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s