DNS Zones
Vložit
- čas přidán 1. 07. 2024
- Check out / itfreetraining or itfreetraining.com for more of our always free training videos.
This video will look at the DNS zones that are available in DNS. Once you complete watching this video you will understand zones, what zones files are available, and how you can use the different zones.
Download Handout itfreetraining.com/handouts/dn...
What is a DNS zone?
A zone file contains the data for a portion of the DNS Name space. For this reason, zones allow different administrators to have control over that part of the DNS name space. Depending on what type of zone file that you create, this will determine what types of DNS records can be stored in that zone and if the data in that zone can be modified.
In this video
This video will look at the following zone types: Primary zone, Secondary zone, Active Directory integrated zone, Stub zone and reverse look up zone. Depending on what the needs of the administrator are, this will determine which zone file is used. Different zone files are used in different scenarios and the administrator needs to decide the correct zone file to use for that scenario.
Primary zone
For any domain name, there needs to be at least one primary zone. If the primary zone is stored in a text file, rather than a database like Active Directory, then this means that the server holding the primary zone text file is the only location where changes can be made to the zone data. If another zone file is asked to make changes to the zone, these changes will be forwarded to a DNS server that is holding a primary zone. This does mean that if the DNS server holding the primary server is not available, changes cannot be made.
Active Directory Integrated Zone
An Active Directory Integrated Zone is essentially a primary zone that has been moved from a text file stored on the computer into the Active Directory database. The advantage of this is that any Domain Controller that has the DNS role installed on it can access the Active Directory Integrated zone. Changes can also be made on any Domain Controller running DNS unlike text based primary zones which are limited to one server. Having the data stored in Active Directory means that the zone will use the same replication system that is used to replicate objects in Active Directory which is quite efficient. Active Directory Integrated Zones also allow the clients to use secure updates. Secure updates use the secure channel created when a computer is added to the domain and thus the computer must be a domain member. If you use a primary zone stored in a text file, and if you enable dynamic updates, you are also allowing none secure updates as well.
Secondary Zones
A secondary zone file is a copy of another zone that is read only. The copy can be any other zone stored on any other DNS server. For example, the zone file could be stored on Windows or a UNIX based system and copied from a primary or secondary zone. If you copy the data from a secondary zone, this would essentially be a copy of a copy so you may have delays waiting for the zone data to be copied from one server to the next server. Since the zone file is read only, changes cannot be made so these changes are passed onto a server holding a primary zone.
Stub Zone
A Stub Zone contains only the NS (Name Server) records from a zone. This NS records contain DNS servers that are considered to be authoritative for that zone. In other words, the DNS Servers are considered to be able to give the best answers for that zone. Since stub zones update the NS records, if there are changes to the NS records, these changes will updated automatically. If you use forwarding or conditional forwarding, and if changes are made, the DNS server would not be aware of these changes.
The rest of the description is available at itfreetraining.com/dns/dns-zones
References
"MCTS 70-640 Configuring Windows Server 2008 Active Directory Second edition" pg 455-456
"Reverse lookup" technet.microsoft.com/en-us/li...
"Reverse DNS lookup" en.wikipedia.org/wiki/Reverse_...
Good to hear. Thanks for watching.
You are helping a lot of people and for my part I thank you for these videos.
Team,
Firstly heartfelt gratitude for uploading such amazing videos on major server technologies. The explanation is simple, coherent and complete. I owe your videos a great deal, in helping me understand concepts of DNS,DHCP, AD etc.
Sincere request to look into making videos on core Backup and Storage concepts if possible. I have searched for a lot of videos online, however backup and Storage lack this simplicity of explanation. You guys are like the one teacher in college who has an amazing way to make us understand complex subjects! Keep at it guys, you affect lives :)
Simple & effective, thanks for making these!
+Psyolopher Thank you, glad we could help
You are a big help. Thank you for your videos. Very rich on details and at the same time “simplified” and systematic.
Thanks so much
Thanks very much and glad to hear that we could help.
This channel is simply awesome! Love it!
Thanks! We're so glad you enjoy it.
Thanks for producing and uploading this video. I find it to be well made. It helped me.
+Philipp Albrecht Thanks, we're always happy to hear our videos helped
You Guys are the best Awesome videos .. Loved em all
+Aman sharma Thanks! We're glad you enjoyed them, thanks for watching.
Top training, great voice , tutor easy to listen ....all F R E E of charge thumbs up
Very informative video. Keep them coming!
Really well done, great explanations. Thank you!
Thanks very much.
Really useful video, explained very nice and clear, thank you very much
You're most welcome! We're glad you enjoyed it.
Thank you.
Not bad, interesting approach. Keep up!
EXCELLENT video Sir. Thank you.
Very welcome
Question: is each DNS server on a given network then required to be part of a zone or is it just the "authoritative" DNS servers that are required to be in a zone?
I'm confused as to whether or not every DNS server is confined to zone or not.
thanks for this video, it helped me a lot
You're welcome.
Could you please create a video on DNS suffix, what is DNS suffix,why to use and how it works.
DNS zones hold data needed by DNS to operate - request resolutions, name server delegation (redirection)
this video was really helpful . . can u guys pls upload videos on active directory?how to install it on the same pc where windows operating systems is already installed. .
Great stuff. Thanks!
You're welcome!
Thanks very much. We don't have any videos on Exchange or Office 365.
Excellent one. Thanks a lot.
Gautam R Thanks, glad you found our video helpful
Excellent Videos. Kudos! Do you have videos on Exchange and Office 365?
excellent video .. thanks
You're welcome!
thanks for the videos
You're very welcome!
Thanks! I hope my DNS admin has reverse lookup zones lol. I gave them about 52 entries to lookup.
thank you very much I've enjoyed the video
You're most welcome!
very good explanation sir
Thanks!
nicely explained.. Good work
Thanks a lot
really great help team...
Thanks, glad we could help you.
Many thanks for speaking simple English
Thanks. There are also captions on of our videos if you have trouble understanding what is being said.
Very helpful.. I can in sleep tell zones
Thanks a lot
You're welcome!
Please highlight that secondary zones cannot be active directory integrated. Thanks for uploading this nice video.
Thanks for the feedback.
MS AD is something that kept Microsoft from getting obseolete. Today even in multicloud hybrid cloud era this legacy lives on as Azure Entra ID.
Active Directory certain helped Microsoft, I don't think it will be going away and time soon even without the cloud.
when i try to open a command prompt in user\appdata\etc it says that exe. not found so i copied the path into my cmd window and it sais "server not authoratative for zone" any help or how to fix this?
Daniel Castañeda It sounds like a permission problem or you are connected to the wrong server. Try running the command on a DNS server that is holding the primary zone.
Thanks for sharing
You're welcome, glad you found useful
Thank you :)
AuG Nevux You're welcome
AuG Nevux You're welcome, we're happy you enjoyed our video
Informative
Thanks for watching.
nice video
Thanks!
love
You're so welcome!
Parabéns!
Tiago Toledo Faria Thank you
thanks Sir
No Probs!
Professional!
Thanks.
Do you have timestamps. if you do plz send me them! :D
stfu about your timestamps
The video has timestamps? What are you specifically requesting?
(facepalm)
Isn't this just for windows servers?
The video uses Windows Server as an example, but same principles apply to all DNS servers.
Thank you.
Thanks a lot
You're very welcome.