Re: Need some advice-Please-

  • From: tony haber <habre_tony@xxxxxxxxx>
  • To: "\[ExchangeList\]" <exchangelist@xxxxxxxxxxxxx>
  • Date: Mon, 27 Jun 2005 00:17:09 -0700 (PDT)

Dear Hatem,
 
your have make mistake in the first step in installing and promot the MUX 
domain,you dont need to create a forword lookup zone , go by this steps and 
every thing will be ok:
 
(i will give you this steps to work on TRU.COM domain and later how to fix 
configuration on MUX.COM)
 
1-install Windows2000 and its latest Sps and Security updates.
2-From IP properties put the primary preffered DNS the KTC server IP (Root DC).
3-Install DNS Service only on the TRU server.
4-Run the DCPROMO ( you must not face any problem to connect to Root DC.
5-Before restart the server after the DCPROMO finish change the preffered DNS1 
to 
   server IP and the Preffered DNS2 the ROOT DC , then restart.
6-Give some time after login (arround 15 min. ) for replication between two 
servers.
   (or by refreshing from Active Directory Site and Services.You must see the 
two 
    servers and when make replicat now it give you Success ).
7-If you check your DNS Console it must be configured by it selt and ready (you 
can make 
   restart the dns to force replication).
 
8-Domain users for KTC cant access resources on other domains is ok because you 
need to 
   give permissions.
 
To fix problem in your MUX.COM domain :
 
1-Change the preffered DNS1 to server ip,and DNS2 to the Root DC.
2-Instrall DNS service on the server (if it is not installed ) and create the 
MUX.COM Zone.
3-Delete the forward lookup zone you create in Root DC.
4-Join the MUX Client pcs to the MUX domain not to KTC domain by puting DNS1 
the MUX 
   server IP not Root DC ip
 
Best Wishes
 Tony
.
 
 
 
   
 

mmmopo errer <hatem20072008@xxxxxxxxx> wrote:
http://www.MSExchange.org/ dear all;
 
some one to help in this subject; please some one advice me.

mmmopo errer <hatem20072008@xxxxxxxxx> wrote:
http://www.MSExchange.org/ 
Dear All,

 We are Planing to Have One Forest, with Multiple Domains Trees as the 
following :-

 1. KTC.COM

2. MUX.COM

3. TRU.COM

4. LON-UK.COM

 

and Each one of the abouve Domain have 25 users as the following :-

1. KTC.COM ( Have 25 Users ).

2. MUX.COM ( Have 25 Users).

3. TRU.COM ( Have 25 Users).

4. LON-UK.COM ( have 25 Users ).

 

So the Total Users will be 100 Users.

 i am going to install KTC.COM as the Forest Root Domain, & Install DNS server 
on one Machine and configure one Forward Zone with name of the Forest Root 
Doamin which is ( KTC.COM) and this DNS server is the Root ( .) .

 

and i found that its Working and the Forest Root is Working and the Domain 
Controller is Able to communicate with the Default DNS.

 

All of 100 users in the Same Network with this IP-Address Schema ( 192.168.1.X 
) / 24.

 

Now, i want to install the Domain ( MUX.COM) as New Domain Tree in the 
exsisting Forest  to share the same Exchange Box.

 

so what i did is :-

 1. Bring New Server.

2.Install Windows Advanced Server 2000 Enterprise edition.

3.Put this IP-Address 192.168.1.20 & the DNS For this server will be the Same 
which is 192.168.1.20.

4. Install the DNS on that Machine.

5.Run this Command ( DCPROMO).

 

Here is the Problem, i found that , while i am trying to install the domain, 
its display error message which is ( The Domain Controller for Domain KTC.COM, 
is Not available ).

 

so when i face this situation, i said to my self, this is because the Domain ( 
MUX) is unable to find the DNS and then unable to find the Domain Controller 
for KTC.

 

( Because the Role is , the Active Directory Clients - WinXP-PRO, Win Server, 
Win2000 Pro, Win98 ...ETC, should first ASK there DNS server to Get from him 
the Specifc Resource Recourd , and in this Case i was installed DNS on This 
Machine and i  made it as Root , which is Wronge ).

 

So what i did is :-

1.uninstall the DNS server from the Domain ( MUX.COM )

2.Create Forward Lookup Zone with this Name ( MUX.COM).

3. Configure the Server to register him self in the DNS of the Domain KTC.COM ( 
By Changing the IP-Address of the Preferd DNS server, to be the DNS server of 
the Domain KTC.COM , instead of MUX.COM ).

4. Run again  the DCPROMO Command .

 

then i found that its working Perfect. without any problem and the Trust 
Relation ship is created automatically and the Users in Both Domains are able 
to access each other .

 =====================================================

 My Questions is :-

 

1. Can the DNS Host Multiple Domains like My Situation , or Not ?

 

2. is there any Problems i will face it in the Future from this Design , with 
One DNS Server and hosted Multiple Domains on it , and the clients for MUX , 
will recorde them self only in MUX.COM Forward Lookup Zone, and the users of 
KTC.COM, will register them self in the KTC.COM Forward Lookup Zone. , do you 
excepect any Problems in the Future ?

=====================================================

I tested it from The Clients which is they are register them self in The 
Forward Lookup Zone of the domain KTC.COM, by using the command NSLOOKUP, and i 
found that they are able to commnuicate with the DNS server & can see each 
other in this Forward Lookup Zone only  with the name of the Domain ( KTC.COM 
), while they are unable to see any Resource for the domain ( MUX.COM ) at all, 
and the same situation for MUX.COM, they are able only to see the Resouce in 
the Domain MUX.COM only and unable to see the Resource in KTC.COM.

 

so do you think i am correct , or not ? Please Help ?

 


__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com ------------------------------------------------------ 
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist 
Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange 
FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ 
------------------------------------------------------ Other Internet Software 
Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com 
Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server 
Resource Site: http://www.isaserver.org Windows Security Resource Site: 
http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ 
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com 
------------------------------------------------------ You are currently 
subscribed to this MSEXchange.org Discussion List as: hatem20072008@xxxxxxxxx 
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=exchangelist 
Report abuse to listadmin@xxxxxxxxxxxxxx


---------------------------------
Yahoo! Sports
Rekindle the Rivalries. Sign up for Fantasy Football 
------------------------------------------------------ List Archives: 
http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: 
http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: 
http://www.msexchange.org/pages/larticle.asp?type=FAQ 
------------------------------------------------------ Other Internet Software 
Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com 
Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server 
Resource Site: http://www.isaserver.org Windows Security Resource Site: 
http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ 
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com 
------------------------------------------------------ You are currently 
subscribed to this MSEXchange.org Discussion List as: habre_tony@xxxxxxxxx To 
unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=exchangelist 
Report
 abuse to listadmin@xxxxxxxxxxxxxx
                
---------------------------------
Do you Yahoo!?
 Yahoo! Mail - You care about security. So do we.

Other related posts: