Creating a DNS Infrastructure Design

Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012

After you create your Active Directory forest and domain designs, you must design a Domain Name System (DNS) infrastructure to support your Active Directory logical structure. DNS enables users to use friendly names that are easy to remember to connect to computers and other resources on IP networks. Active Directory Domain Services (AD DS) in Windows Server 2008 requires DNS.

The process for designing DNS to support AD DS varies according to whether your organization already has an existing DNS Server service or you are deploying a new DNS Server service:

If your organization has an existing DNS infrastructure, you must make sure that you understand how your DNS infrastructure will interact with the Active Directory namespace. For a worksheet to assist you in documenting your existing DNS infrastructure design, download from Job Aids for Windows Server 2003 Deployment Kit ( and open "DNS Inventory" (DSSLOGI_8.doc).


In addition to IP version 4 (IPv4) addresses, Windows Server 2008 also supports IP version 6 (IPv6) addresses. For a worksheet to assist you in listing the IPv6 addresses while documenting the recursive name resolution method of your current DNS structure, see Appendix A: DNS Inventory.

Before you design your DNS infrastructure to support AD DS, it can be helpful to read about the DNS hierarchy, the DNS name resolution process, and how DNS supports AD DS. For more information about the DNS hierarchy and name resolution process, see the DNS Technical Reference ( For more information about how DNS supports AD DS, see the DNS Support for Active Directory Technical Reference (

In this section