IT Interview Questions:What are the benefits of using Windows 2003 DNS when using AD-integrated zones?
Information Technology (IT) Interview Questions and Answers
(Continued from previous question...)
IT Interview Questions:What are the benefits of using Windows 2003 DNS when
using AD-integrated zones?
If your DNS topology includes Active Directory, use Active Directory
–integrated zones.
Active Directory integrated zones enable you to store zone
data in the Active Directory database. Zone information about any primary DNS
server within an Active Directory integrated zone is always replicated.
Because DNS replication is single-master, a primary DNS server in a standard
primary DNS zone can be a single point of failure.
In an Active Directory integrated zone, a primary DNS server cannot be a single point of failure
because Active Directory uses multimaster replication.
Updates that are made
to any domain controller are replicated to all domain controllers and the
zone information about any primary DNS server within an Active Directory
–integrated zone is always replicated.
Active Directory integrated zones:
•
Enable you to secure zones by using secure dynamic update.
•
Provide increased fault tolerance. Every Active Directory
integrated zone can be replicated to all domain controllers within the Active Directory domain or
forest. All DNS servers running on these domain controllers can act as
primary servers for the zone and accept dynamic updates.
Enable replication
that propagates changed data only, compresses replicated data, and reduces
network traffic. If you have an Active Directory infrastructure, you can only
use Active Directory integrated zones on Active Directory domain controllers.
If you are using Active Directory integrated zones, you must decide whether
or not to store Active Directory integrated zones in the application
directory partition.
You can combine Active Directory integrated zones and file-based zones in the
same design. For example, if the DNS server that is authoritative for the
private root zone is running on an operating system other than Windows Server
2003 or Windows 2000, it cannot act as an Active Directory domain controller.
Therefore, you must use file-based zones on that server. However, you can
delegate this zone to any domain controller running either Windows Server
2003 or Windows 2000.
(Continued on next question...)
Other Interview Questions
|