question

jennylee-7288 avatar image
0 Votes"
jennylee-7288 asked DSPatrick commented

Adding just DNS on server 2019 in remote site configuration

Have HQ with 2 AD servers, DNS, etc. Remote sites have Firewalls that take care of DHCP. Having issues resolving names. One larger remote site has a win 2019 server, so just adding DNS. Adding Secondary Zone and transferred from HQ. Should the Reverse look up zone also be set up as Secondary or Primary.
Can't find more detailed directions for setting up just DNS for remote site.

windows-server-2019windows-dhcp-dns
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered jennylee-7288 commented

On your primary DNS Server
- Right click on the zone you want to transfer and go in the zone transfers
- Click the check box Allow zone transfer and then click on the radio button Only to the following servers
- In the list, add the IP address of your DNS server and it's done.

On your new non-integrated DNS Server, in the DNS console
- Create the reverse zone as first step
- Right click on forward lookup zone
- Select New Zone
- Type the name of the zone you want to transfer (ex: somedomain.xxx.com) and click next
- type the IP address of the DNS server from which you want to read the zone (the AD Server)
- Click Next and click finish

--please don't forget to upvote and Accept as answer if the reply is helpful--




· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you...so this is the best way to resolve the DNS issues of not being able to ping anything at that site by name? Didn't want more work/money of making it a DC. When I add the Reverse lookup zone, I assume I need to manually put all the other DC in ( 8 total) in the nameserver tab so the other sites can ping this one as well?

0 Votes 0 ·
DSPatrick avatar image
0 Votes"
DSPatrick answered DSPatrick commented

I assume I need to manually put all the other DC in ( 8 total) in the nameserver tab so the other sites can ping this one as well?

No, this shouldn't be necessary.


Didn't want more work/money of making it a DC

It's probably less work to stand up a domain controller.

--please don't forget to upvote and Accept as answer if the reply is helpful--









· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--



0 Votes 0 ·
jennylee-7288 avatar image
0 Votes"
jennylee-7288 answered

Hello,
I"m still unable to ping the computers after putting the DNS up of the 2019 server I just installed DNS on , so I must be doing something wrong.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered jennylee-7288 commented

Please run;

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
ip config /all > C:\dns1.txt
ipconfig /all > C:\problemworkstation.txt

then put unzipped text files up on OneDrive and share a link.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

We have one drive blocked, but the first test didn't work so well. Ran it on our main DC and got this:


  • Connecting to directory service on server %server name%.

Ldap search capability attribute search failed on server %servername%,

return value = 81
The host %servername%could not be resolved to an IP address. Check the

DNS server, DHCP, server name, etc.

DcDiag: uncaught exception raised, continuing search


I can however ping the server I put DNS on by name from other servers, just not any of the other computers I have added this dns to


0 Votes 0 ·
DSPatrick avatar image
0 Votes"
DSPatrick answered

We have one drive blocked

You can also start a case here with product support.
https://support.serviceshub.microsoft.com/supportforbusiness

--please don't forget to upvote and Accept as answer if the reply is helpful--










5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

jennylee-7288 avatar image
0 Votes"
jennylee-7288 answered

Does it matter if I add the DNS zone as a primary on the new DNS only server?
Do I need to have the new DNS server in the host file of the main DC? I was able to add the new DNS server in the window of the DNS manager but when I took it out of the host file and tried to add it, I got access denied.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Does it matter if I add the DNS zone as a primary on the new DNS only server?

Not sure what you have going here. If you didn't setup a zone transfer then nothing would copy over and also would never synchronize.

Do I need to have the new DNS server in the host file of the main DC?

No

--please don't forget to upvote and Accept as answer if the reply is helpful--










5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

jennylee-7288 avatar image
0 Votes"
jennylee-7288 answered DSPatrick commented

I did set up a zone transfer from the PDC and it worked. Before I did that I had put the new DNS ip/name in the host file of the PDC.
After I took it out I could not connect to the new DNS it says Access Denied . Does the new server need to be manually added in the PDC host file in order to work? Didn't seem to make sense to me since that is not mentioned in any articles.
I"m just trying to be able to ping the computers at the remote office by name, which is why I added DNS. I can ping out to anything by name from the internal computers...just can't ping to them by name from any other computers/servers.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Does the new server need to be manually added in the PDC host file in order to work?

No, it does not.

--please don't forget to upvote and Accept as answer if the reply is helpful--

0 Votes 0 ·