Problems with DNS policy

Nick Tuktarov 20 Reputation points

Hi, community.

I made a DNS policy for subnet, zone scope and added record type A.

My A record, made above, resolving on client from subnet, it's OK. But while policy enabled, that client can't resolving other records in domain. Appears error: *** UnKnown can't find Non-existent domain

Did like these:

Add-DnsServerClientSubnet -Name "Subnet_name" -IPv4Subnet ""

Add-DnsServerZoneScope -ZoneName “” -Name “ZoneScope_name”

Add-DnsServerResourceRecord -ZoneName “” -A -Name “A_record_name” -IPv4Address "" -ZoneScope “ZoneScope_name”

Add-DnsServerQueryResolutionPolicy -Name “Policy_name” -Action ALLOW -ClientSubnet “eq,Subnet_name” -ZoneScope “ZoneScope_name,1” -ZoneName “” –PassThru

What i did wrong?

Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,152 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
4,878 questions
Windows Server PowerShell
Windows Server PowerShell
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.PowerShell: A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
5,095 questions
0 comments No comments
{count} votes

Accepted answer
  1. Gary Reynolds 9,111 Reputation points

    If you have other records in the same domain zone and you only want a single record to use the policy, you will need to create a record based policy not a zone policy. Try using the -fqdn option rather than the -zonescope option on Add-DnsServerQueryResolutionPolicy.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful