DNS record with 2 IPs

I am running a DNS server on a 10.6.6 box and want to add a 2nd IP to a DNS record on the LAN. The reason being is that I backup clients to a PresSTORE server onto tape. Some laptops are not always connected by ethernet so it would be handy to "drop back" to the wireless IP address. I have tried adding the 2nd (wireless) IP for a DNS entry but when pinging the client it only tries the 1st IP in the list. Reverse DNS points to both IPs. Is there a way of doing this?
Any help finding a solution would be greatly appreciated.
Cheers, Paul

This reeks of an IP subnet routing error, a DNS error, or of a firewall or connectivity issue.
No, No & No
DNS would not likely be my first stop here, if I do understand what you're up to. (And I'm not certain I do.)
OK this is as simple as I can think of asking... I have one DNS A Record for a client with 2 IP addresses, one IP for ethernet, other for wireless. Obviously they both can't have the same IP on the same subnet so if DNS lookup can't resolve to 1st IP, how can one force it to try resolving to 2nd before giving up with an error?
I guess the ethernet & wireless could have the same IP if they were both not active when both connected. But expecting the user to switch off wireless when the etherent cable is plugged in and switch back on when the cable is unplugged, for the same of simplicity of a network connection *+I think not+*.
Also with IPs in the A Record, I have found DNS always tries resolving to the higher of the 2 IPs first (192.168.1.35 before 192.168.1.36). Then if .36 is offline it won't try resolving to .35 again until the DNS cache has been flushed.
Are these using WiFi routers, or access points?
Simple Apple Extreme Base Station configured as a wireless access point.
Is there one IP subnet for all hosts irrespective of wired or wireless connection, or multiple subnets?
One IP subnet
Is there one DHCP server, or multiple DHCP servers?
One DHCP server
Is your PresSTORE box configured with static IP?
Static, not that is makes the slightest bit of difference.
By the look of it I am gonna have to wait until PresSTORE supports Bonjour!

Similar Messages

  • Backup DNS Records

    Afternoon, 
    Is there a way to create a back-up A record in order to provide redundancy? 
    I'm currently in the middle of setting up a DR site and looking to find a way to have a set of DNS record pointing at existing servers host name but with different IP addresses so in the event that we require to bring a replicated server up at the DR site
    the DNS record would automatic switch over after the TTL has expired on the primary link. 
    our DNS service runs on a windows server 2012 environment in a cluster of 3 servers for redundancy. 
    Thanks

    To answer/address the question about the same records with different IPs, unfortunately it doesn't work that way with AD. The IPs registered are absolute for the service locations, and they must be consistent across the organization for AD DC to DC communications
    including replication, and client to DC communications. If you attempt to alter them, it will cause numerous errors and additional headaches that I'm sure you do not want to deal with.
    Just setup two DCs at the DR, do not make them GCs. Just make them GCs in case a down issue occurs. Depending if you have 3 or more sites, this may also require to make individual site links for each site and disable BASL. The reasons are long winded,
    but it's technically how AD works. You can design around it, but you can't mess with DNS. And keep in mind, just because they are up, services and client apps may not be so forgiving to "see" the DR servers until they've been restarted.
    So there's more to this than it appears.  
    You can read up in this stuff in the following link:
    AD Site Design, DNS & the DC Locator Process, and Auto Site Link Bridging, or Bridge All Site Links (BASL)
    http://blogs.msmvps.com/acefekay/2013/02/24/ad-site-design-and-auto-site-link-bridging-or-bridge-all-site-links-basl/
    The blogs below discusses:
    WINS NetBIOS, Browser Service, Disabling NetBIOS, & Direct Hosted SMB (DirectSMB). Troubleshooting the browser service.
    Client side resolution process chart.
    The DNS Client Side Resolver algorithm.
    If one DC or DNS goes down, does a client logon to another DC or use the other DNS server in the NIC?
    DNS Forwarders Algorithm and multiple DNS addresses (if you've configured more than one forwarders or more than one IP in the NIC's DNS list)
    Client side resolution process chart
    Published by Ace Fekay, MCT, MVP DS on Nov 29, 2009 at 10:28 PM  1764  1
    http://blogs.msmvps.com/acefekay/2009/11/29/dns-wins-netbios-amp-the-client-side-resolver-browser-service-disabling-netbios-direct-hosted-smb-directsmb-if-one-dc-is-down-does-a-client-logon-to-another-dc-and-dns-forwarders-algorithm/
    Ace Fekay
    MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

  • Auto install printerdriver from CUPS with info from dns record

    I have a Linux server with CUPS serving our printers. Authentication is needed to print. For easy installation on our Macs, I added my printerinfo to our DNS so that the printers are browseable in OS X Lion and Mountain Lion. This setup only partly works on Mac (it works from airprint capable clients).
    When I limit the list of printers to 5 or so, I can install those printers by clicking the "+" button in the printer configuration screen, and choosing the printer from the list. The printqueue is created and the correct driver is installed. I can use the printer without problems.
    When I add more printers to DNS I don't get the list of printers directly when clicking on the "+" sign (the list is too big I guess). I get the "add printer" screen, with a list of all my printers. When I select a printer, the "location" field is taken from the DNS record (that's fine), but the driver falls back to "generic PS driver" instead of the driver I have set in the DNS record.
    What's the difference  between the "shortcut" when only a few printers are browseable, and the "add printer" wizard that list more of them? They seem to get the driver info  differently.
    As a workaround: anyone knows how to add a printer via commandline with auto configuration, the same way as clicking the "+" sign and choosing a printer ?

    Hi Eze-Oracle and Pascal Kreyer
    Thank you for your reply.
    Your advice was very helpful.
    I have completed the zone installation like the following the  after the repository is updated.
    testserver# zoneadm -z kudotest01 install
    The following ZFS file system(s) have been created:
        rpool/zones/kudotest01
    Progress being logged to /var/log/zones/zoneadm.20141217T021103Z.kudotest01.install
           Image: Preparing at /zones/kudotest01/root.
    AI Manifest: /tmp/manifest.xml.OSaiXo
      SC Profile: /usr/share/auto_install/sc_profiles/enable_sci.xml
        Zonename: kudotest01
    Installation: Starting ...
                  Creating IPS image
    開始 linked: 1/1 done
                  Installing packages from:
                      solaris
                          origin:  http://localhost:80/
    ダウンロード                 パッケージ  ファイル  転送 (MB)  速度
    完了                               187/187   34347/34347  248.9/248.9  2.4M/s
    フェーズ                                  項目
    新しいアクションをインストールしています 48240/48240
    パッケージ状態データベースを更新しています      完了
    イメージ状態を更新しています      完了
    スピード検索データベースを作成しています      完了
    Installation: Succeeded
            Note: Man pages can be obtained by installing pkg:/system/manual
    done.
            Done: Installation completed in 223.473 seconds.
      Next Steps: Boot the zone, then log into the zone console (zlogin -C)
                  to complete the configuration process.
    Log saved in non-global zone as /zones/kudotest01/root/var/log/zones/zoneadm.20141217T021103Z.kudotest01.install
    testserver#
    Best regards
    ken

  • How do I setup a DNS record to point to an internal IP with a port.

    I am trying to setup a DNS entry on my AD server to point to a web sever that I have setup to run certain services.  All of these services run through IIS on port 82 for example service A is internally 192.168.0.1:82/info/login and service B is 192.168.0.1:82/tech/login.
     I am trying to give these services easy to use names like for example info.mycompany.com and tech.mycompany.com so that it is easy to access for the employees but I am obviously missing something because I have had no luck setting up anything.  My
    company is still using SBS 2003 as it's AD and DNS server so I am working with flint and bear skin here.
    I am also trying to do the same thing for the external access to these services but where as I have the internal address for these services I have the external static IP.  When using the external IP with the port from outside the network everything
    works fine but I would like for it to to have a simple name identical to the internal names but accessible from the outside.  I frankly feel out of my depth on both of these issues and I would really appreciate any help that can be lent.  Thank you. 

    You cant set a dns record (that would be used by a browser) to point to an ip and port, srv records can but that requires the application to look them up.
    To have  info.mycompany.com  point to 192.168.0.1:82/info/login you
    would add a cname or A record to the dns pointing to that IP, then in IIS you would assign that dns name to the host headers. Also in IIS you would need to use
    URL rewrite plugin with this you would setup a redirect for that host header {HTTP_HOST} to point to that link.

  • Problem sending mail to hostname with multiple IN A DNS Records

    Hi there
    I've been using the javamail API without problems for some 2 years now in the company I'm working for.
    The problems started this week, when the hostname I'm using to send out mails via SMTP, now has multiple 'IN A' DNS records, but allthough all of them respond to a 'ping' only some of them (as of today) accepts a connection on port 25.
    The problem is now, that I get random sending errors whenever the DNS lookup of hostname resolves to an IP where no SMTP server is listening on port 25.
    I have the following questions:
    First of all: Is there an RFC (or other standard behavior) that say a SMTP client should behave like that (throw an exception if the first connection of an round robin DNS lookup fails)? I known that real SMTP servers work more with DNS MX records to find an alternative server, if the first server is unavailable. But javamail is more like a SMTP client, not a fully blown SMTP server.
    What is the best way to solve this problem (if the Mailserver/DNS guys aren't cooperative)? I saw that you can pass a custom SocketFactory via properties to javamail. So would the proper solution be to implement a custom SocektFactory, that resolves all the different IP addresses for a hostname, and only returns a Socket, to which address and port it actually could get a connection.
    Sorry for my bad english
    -Reto

    Have you talk to your network or server administrator to find out why your server is only
    accepting connections on some IP addresses, even though it's returning all of them via
    DNS lookups? Seems like a mistake to me.
    If, for some strange reason, this behavior is on purpose, your socket factory idea may
    be the best approach.
    Also check whether there is a different DNS name you can use for the server that will
    resolve to the IP address where it will accept connections.

  • Java Web Start and DNS with multiple IPs fails

    We have a number of servers that deploy a Web Start application. We have a DNS entry with the 3 IPs of the servers (e.g. nslookup webstart.mydomain.com returns 3 different IPs).
    This is fine for a browser (running a packet capture program e.g. Wireshark, will show each of the IPs getting tried until the file is returned).
    The problem is with javaws - it only tries the first IP returned from the DNS, and if it isn't running it fails.
    Does anyone know if there is a way to resolve this (makes it harder to fail over if our clients need different shortcuts)? (I assume that javaws just doesn't have the smarts to deal with this).
    Maybe I need to add it to my Java 7 wish list.
    Cheers,
    David

    We are trying to do the same thing for a different purpose. You need to set the override sooner than WebStart lets you... It has to be on the command line.
    We are trying to overide the default nameservice because it uses reverse dns which is slow at some of our sites. We need to set the parameter
    sun.net.spi.nameservice.provider.1=dns,sun before the VM starts using webstart. The only way we can do this is by setting the environment variable
    JAVAWS_VM_ARGS=-Dsun.net.spi.nameservice.provider.1=dns,sun on the client. This is not real easy from the server side.
    Is there any way we can make the client default to this nameservice provider? There must be some file somewhere on the client I can put this property in...

  • Creating a little GUI with adding DNS record functionality

    Hi all,
    Creating a DNS record (A record) is pretty straight forward in Powershell. I wonder if somebody knows how to create a little GUI with the powershell commands in the background to create DNS records.
    For example something like a HTML form in where u can enter the DNS name, the Zone and the IPv4 address. Click Add and Powershell will add it on the background. I cannot find any good information on this when i google on it.
    Thanks!

    Hi Bennekommer,
    I‘m writing to check if the suggestions were helpful, if you have any questions, please feel free to let me know.
    If you have any feedback on our support, please click here.
    Best Regards,
    Anna
    TechNet Community Support
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

  • DNS Issues with Hyper-V 2012 R2 VDI Pooled Desktop Deployment

    Good afternoon all!
    We are running a POC VDI deployment on a Nutanix system, and I am having a DNS issue. I would appreciate some help trying to figure this out. Two situations that are causing issues that I can see:
    1. VMs go into a saved state if not being used: This in itself is not an issue, and I see it as a way to save resources not being used; however, if a VM is saved for a few days, the DHCP address often gets reassigned. Now if users are connecting, and that
    saved VM with the stale address is called to wake up, the VM is not found.
    2. Recreating the pool after updating the golden image: This is the bigger issue. After a couple days of running smoothly, I was asked by my pilot users to add Firefox. I installed it and recreated all the VMs in the pool. When this happened, they all got
    new IPs, but the old DNS records were not updated. This made the broker unable to find a single VM in the pool. I could not ping a single one.
    Has anybody else run into these DNS issues with a VDI deployment? If so, what did you do to resolve it? If not, have any ideas on what is going on here?
    Thank you in advance!
    Eric

    Hi Eric,
    As per my research, I can say that the default behavior. When we will recreate the VM it will change the IP address dynamically. But from your description it seems the DNS record is not getting update and due to that you can’t find your VM with hostname or
    IP. But for this you can set one option under DNS server with which DNS record can update the new IP address. The option you need to set is “Dynamic updates>Nonsecure and Secure” under general properties in sites. You can check below snap.
    Hope it helps!
    Thanks.
    Dharmesh Solanki
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

  • How to create a DNS record for a domain itself (without a hostname)

    Hi,
    Normally, you can create a DNS record that points to the zone itself, e.g.:
    @               10800 IN A    196.197.200.201
    How do you accomplish that on a Mac OSX Lion Server? The DNS requires you to enter a hostname and it does not accept "@" as the hostname as it normally appears in the zone file.
    (manually modifying the host file does not work - I tried that ;-) )
    Any help is appreciated
    Thanks
    Bjoern Dirchsen

    Create either a blank record with a ., or a FQDN such as 'domain.com.' (note the trailing dot). Either of these should map to the domain name.

  • What are the right DNS records to host more than one site on OSX Server (ML). My conf in Server.app looks right but one of my sites lands on the default server. Any suggestion?

    I started using OSX Server on Mountain Lion a few days ago and it looks promising.
    I do however measure my ignorance in DNS matters...
    I defined two websites in addition to the the Default Server, so I have three names to deal with.
    For argument's sake
    - www.main.com is the default site
    - www.sitea.com is the first site
    - www.siteb.com is the second site
    I define a virtual host for www.sitea.com and another for www.siteb.com
    The resulting apache conf is what I would expect, I am pretty sure it is correct.
    So I modified my DNS entries (they were A records) to point to my new OSX Server.
    My result is:
    - www.main.com shows the default site
    - www.sitea.com shows the first site
    - www.siteb.com shows...the default site
    Any ideas?
    Cheers

    Thanks MrHoffman!
    My problem ended up being a name but not in the DNS!...In Apache.
    Your information allowed me to rule out possibilities and zoom in to the culprit faster.
    I just report here the conclusion hoping it can help someone else.
    When I installed OSX Server last week, I had in mind to principally run siteb.
    During the initial install, this is what I must have entered and then forgot about it.
    Then I defined my virtual hosts sitea and siteb and realised my machine was called siteb and changed its name to main to avaid a name collision. At which time I remember OSX Server telling me that changing the name could have consequences...But it apparently went ok, and it did except for one little thing.
    The consequence was this:
    in the main configuration file /Library/Server/Web/Config/apache2/http_server_app.conf the ServerName directive had remained siteb (instead of main). I manually updated it with TextEdit (could do vi from bash, its the same) and replaced siteb with main.
    There is a way to detect it.
    In Server.app, there is a "logs" panel, which displays all sorts of logs for everything including the websites.
    Each website's logs are presented as "access" and "error" logs. The information was there, but I could not see it because the viewing window in remarkably small for so much information in raw text...
    web logs are actually written to only two files in /var/log/apache2 (error.log and access.log)
    I openned two bash windows and run tail -f on error.log in one and tail -f access.log in the other.
    When I started the web service, apache threw a warning stating from mod_ssl saying that the certificate did not match the serve name...I the certificate was what I expected, I checked http_server_app.conf and found the ServerName directive that was not changed when I renamed my server...
    Easily fixed when its found, but it can take a while to find.
    BTW, I was using A DNS records for and it works, but I find your method of using CNAME records documents the administrator's intent better than with A records; I started to do the same. (A records a useful though, they can run a domain across multiple machines)
    Cheers mate!

  • Dnscmd's OpenAcl option doesn't seem to change DNS record permissions

    I'm creating DNS A records with dnscmd /recordadd, and I can't see a difference in the A record's permissions whether I use the OpenAcl option or not. Is this normal?
    I was expecting with OpenAcl to see permissions similar to Write permissions for Authenticated Users or something. Instead I can't see any difference in the permissions at all and the permissions for non-admins are Read permissions for Everyone.
    The DCs run win 2008 R2 SP1. The syntax I've been using for dnscmd.exe is:
    dnscmd /recordadd mydomain.com mycomputer /aging /openacl A 192.168.0.123
    I want to migrate from Infoblox DNS to AD-integrated. So I'm expecting to export to csv from Infoblox, reformat the csv file a bit and use dnscmd.exe to read the reformatted csv and create DNS records in AD. I'll also enable the option on the Windows computers
    to register their DNS records.
    I think that the records that dnscmd.exe creates in AD won't have permissions that allow the Windows computers to overwrite them unless I use the OpenAcl option. But OpenAcl doesn't seem to make any difference to the permissions. Very confusing! Thanks for
    any help.

    Thanks Kumar and sorry for replying so late. What you said is correct and what solved my problem was running Windows Update. I was testing using W2K8 R2 with SP1 but no updates after that. After I ran Windows Update, then creating a DNS record using dnsmd.exe
    with the /OpenAcl argument did indeed set the permissions on the DNS record so that Authenticated Users could write to it.

  • HTTPS, DNS and dynamically updating DNS records

    Hello to you all, if you are able to help with a DNS problem that I'm having then please accept my thanks and appreciation in advance.
    First some background information, I recently  moved my server from my studio to my house where a new purpose built studio will soon be erected. At my old studio any requests for myurl.com came in via the IP (whether that be http, https, ftp etc) from the domain registrar and the router would send the request to the relevant port number whether that be 80 for http or 443 for https etc and all was well as this location had a fixed IP address. Unfortunately at my new location whilst I have a much faster connection I do not have a fixed IP. To get around this I have the following set up (not ideal for a business I know but perfectly OK for home hosting); I set up two psuedo nameservers at no-ip.com (ns1myurl.com and ns2myurl.com) which tracks the changes in my IP address and updates its records accordingly, my registrar then sends any requests to these 'nameservers' and no-ip then forwards it on to my server. So far so good.
    The problem arises once the requests get to my server, whilst I have DNS set up, I can only recieve requests from a straight request to the server ie myurl.com will display the site without any problem, but if I then put a www in front of that or try to access the https part of my site (which is set up as a seperate site on the same server) then the server throws an error. I have tried to put an alias (CNAME) into the zone but it does not want to resolve the request. I have searched around but to no avail, I am totally new to DNS so am currently on a steep learning curve and fumbling around in the dark.
    The first thing that I need to get working is the request to be resolved correctly and then (and this is where the real fun starts!) is to dynamically update the IP in the DNS records as the IP changes. I will probably have to get help in on this as I understand that this requires BIND of which I know nothing about, first though I'd like to get the pages to be served up correctly. Advice, hints, tips or links to tutorials all greatly appreciated. Full set up listed below.
    Many thanks, David.
    Xserve PPC G5 running 10.5.8 unlimited set up as standalone OD master
    Xraid
    APC UPS
    CradlePoint MBR1200 Gateway router which acts as the DHCP
    http://myurl.com and https://myurl.com set up as 2 seperate sites and located on the Xraid
    Current DNS setup:
    Primary Zone name: myurl.com with nameservers ns1myurl.no-ip.info and ns2myurl.no-ip.info and allow zone transfers in checked
    Then
    Name
    Type
    Value
    myurl.com
    Primary Zone
            ns1myurl.no-ip.info
            Machine
    12.34.56.78 (external IP)
            ns2myurl.no-ip.info
            Machine
    12.34.56.78 (external IP)
            myurl.com.
            Machine
    12.34.56.78 (external IP)
            www.myurl.com.
            Alias
    myurl.com.
    With the reverse zone looking thus with allow zone transfers being checked
    Name
    Type
    Value
    56.34.12.in-addr.arpa.
    Reverse Zone
            12.34.56.78
            Reverse mapping
            myurl.com.

    Thanks for the reply Camelot, that part though I had already figured out. I now have this working, all I did was change the external IP to the internal one of the server with resolves with the .local machine name and all is working just fine (for now!). As long as I have primary zones set for each site and any alias or services set up on them then everything works well.. The real test will be when my ISP changes the IP, whilst my tests have proved successful the proof will be when they update the address.
    Thanks anyway. David.

  • #554 5.4.4 SMTPSEND.DNS.MxLoopback; DNS records for this domain are configured in a loop ##

    Hi,
    This is my first post here. 
    My exchange server of late is facing a peculiar problem. I get the error message that I have posted below when sending mails to any outside domain. However when I restart the server the mails can be resend to the address without any issue. After a certain
    time again the issue pops up upon which I am forced to restart the server again. I am running 2007 Exchange on Windows 2003.
    Generating server: name.mydomain.com
    [email protected]
    #554 5.4.4 SMTPSEND.DNS.MxLoopback; DNS records for this domain are configured in a loop ##
    [email protected]
    #554 5.4.4 SMTPSEND.DNS.MxLoopback; DNS records for this domain are configured in a loop ##
    Original message headers:
    Received: from name.mydomain.com ([1xx.xxx.xxx.xx5]) by MHDMAILS.mouwasat.com
     ([1xx.xxx.xxx.xx5]) with mapi; Wed, 19 Oct 2011 08:56:29 +0300
    From:  <[email protected]>
    To: <[email protected]>
    CC: "Al Alami,Tareq" <[email protected]>
    Date: Wed, 19 Oct 2011 08:56:27 +0300
    Subject: RE:   
    Thread-Topic:   
    Thread-Index: AcyAQ5tu8z9CvBfdT5+1pcGQkk6x0AIuwczAAAGZjeABQyW5sAADeeJQAAETNDA=
    Message-ID: <[email protected]>
    References: <[email protected]com>
     <[email protected]com>
    Accept-Language: en-US
    Content-Language: en-US
    X-MS-Has-Attach: yes
    X-MS-TNEF-Correlator:
    acceptlanguage: en-US
    Content-Type: multipart/related;
                boundary="_004_EEC8FA6B3B286A4E90D709FECDF51AA06C0588CA11namedomain_";
                type="multipart/alternative"
    MIME-Version: 1.0

    On Sun, 23 Oct 2011 15:05:15 +0000, Jobin Jacob wrote:
    >
    >
    >Even af
    >
    >ter removing my domain from the send connector I continue to receive the error. I would like to say I do have a firewall, Cyberoam. However, it was the same configuration till now in the firewall. I did try Mx lookup and found the following.
    >
    >Could there be any other solution to this issue ?
    Sure, but it's necessary to ask a lot of questions since none of us
    know how your organization is set up.
    I see you also have "Use the External DNS Lookup settings on the
    transport server" box checked. How have you configured the "External
    DNS Lookups" on the HT server's property page? Is there any good
    reason why you aren't just using your internal DNS servers? If the
    internal DNS servers are configured to resolve (or forward) queries
    for "external" domains then there's no reason to use that checkbox. In
    most cases checking that box is a mistake.
    http://technet.microsoft.com/en-us/library/aa997166(EXCHG.80).aspx
    The behavior you describe (it works for a while and then fails;
    restarting the server returns it to a working state) sure sounds like
    some sort of DNS problem.
    Rich Matheisen
    MCSE+I, Exchange MVP
    --- Rich Matheisen MCSE+I, Exchange MVP

  • Two DNS Servers with different SOA

    Hello,
    I have a DNS Server in my main office (Lab environment) of an Active Directory domain.
    I have set up another one in a branchoffice, and they communicated to each other just fine with a ISA Server VPN Site-to-site.
    The link of that VPN broke and the branchoffice was off line for several days.
    I managed to bring up again that VPN site to site, but now I see that the SOA within the DNS Sever in the branchoffice is
    482, whereas the SOA in the DNS Server in the main office is
    548.
    I read somewhere that this SOA is precisely for this cases, and that Active Directory would determine which DNS is better and therefore, the branchoffice would take the new dns records.
    Is this so? . I am waiting but don't see that the branchoffice takes that 548 SOA Number from the DNS in the main office.
    Thanks in advance!
    P.S : I manually changed some things in the DNS in the Branchoffice and I am hoping that the SOA will work that out.
    Luis Olías Técnico/Admon Sistemas . Sevilla (España - Spain)

    Hello again, I feel sort of annoying by posting so many things. 
    I created a user in DC3 and it was replicated to DC1-New. If I do it the other way around, it does not work.
    In other words, the replication process only works this way DC3 --> DC1-New. I have checked it is not a firewall issue, all are off, since I began this lab.
    If I run repadmin /showrepl in DC1-New ,
    it sees DC3 and all success messages regarding the replication.
    If I run repadmin /showrepl in DC3,
    it just sees nothing.
    I also run dcdiag /test:knowsofroleholders in DC3 and
    there is this message: The holder of the Schema master is a deleted DC (DC1) . The same of all the 5 FSMOs. 
    I am trying to find a way to tell DC3 that the FSMOs holder is not DC1, but DC1-New. 
    Thanks for your support.
    Luis Olías Técnico/Admon Sistemas . Sevilla (España - Spain)

  • Can we generate the Offfice 365 MX-Token needed for the MX-DNS-Record by ourselves?

    Hi there
    As a hosting company we programmed a DNS-zone-editor in which our customers can edit their DNS-zone. A new feature we are offering is a so-called "DNS-Template-Service", in which our customers can select predefined record templates like GoogleApps
    and then trigger by one click the installation of the predefined records.
    We also would like to offer them "Office 365" as a template. According to this article https://support.office.com/en-ie/article/Create-DNS-records-at-any-DNS-hosting-provider-for-Office-365-7b7b075d-79f9-4e37-8a9e-fb60c1d95166#BKMK_add_CNAME we
    understand that all we need to do is to add a couple of CNAME, TXT and SRV records which is great.
    However, there is also an MX record with a dynamical component (the "MX-Token") that is required:
    <MX token>.mail.protection.outlook.com
    We understand that this token can be fetched by the customer from their office installation. However that would break the purpose of our templating system that is designed to work like an on/off switch.
    So our question is if there is any way that our system could generate this token by itself since we have knowledge of the customers domain anyway.
    According to some customers who already installed those records manually we can see some patterns:
    Example 1: domain1.com results in an MX with a value of
    domain1-com.mail.protection.outlook.com
    This is easy: just replace the dot with a hyphen.
    However for domains with hyphens in the name a special conversion is made and appended on the back of the first part: 
    Example 2: domain-withdash.com results in an MX with a value of domainwithdash-com01e.mail.protection.outlook.com
    Example 3: dom-ainwithdash.com results in an MX with a value of domainwithdash-com0i.mail.protection.outlook.com
    Example 4: doma-in-withadash.ch results in an MX with a value of domainwithdash-com01bb.mail.protection.outlook.com
    So what is the algorithm for this (probably bidirectional) conversion?
    Thanks for letting us know and make it easier for our customers to use office 365 with their own domain name.
    Regards
    Lukas
    Developer @ cyon GmbH

    We actually spent the last 1.5h to reverse-engineer the pattern and (hopefully) found the right answer on how these hyphen-replacements are substituted.
    * This functions generates a token as done in office 365
    * @return mixed|string
    private function getOffice365MxToken($domain)
    $delimiter = '0'; // delimiter between the domain part and the hyphen replacement part
    $token = $domain;
    $hyphenReplaceToken = '';
    // split domain string into chunks of 4 chars
    $chunkSize = 4;
    $chunks = str_split($token, $chunkSize);
    // transform the hyphens (their position) in the domain name to an alphanumerical character string
    $skipCount = 0;
    $intOfA = ord('a'); // get the decimal value of the letter 'a' as start value
    foreach($chunks as $chunk){
    $digit = $intOfA;
    for ($i = 0; $i < $chunkSize; $i++){
    if('-' === $chunk[$i]){
    $digit += pow(2, $i);
    if($intOfA === $digit){ // if the value is a it means no hyphen was found
    $skipCount++;
    continue;
    if (0 !== $skipCount) {
    $hyphenReplaceToken .= $skipCount;
    $hyphenReplaceToken .= chr($digit);
    $skipCount = 0; // rewind skip count
    if(strlen($hyphenReplaceToken) > 0){
    $token .= $delimiter . $hyphenReplaceToken;
    $token = str_replace('-', '', $token); // remove - from domain name
    $token = str_replace('.', '-', $token); // replace dots with -
    return $token;
    Short-hand explanation: The pattern showed that the domain string simply gets chunked into pieces of 4 chars. For each setting at which hyphen(s) can be located at the index value (seen as bit mask 0124) is added up. The resulting number we get per chunk
    then can be added to starting decimal value of the letter 'a' (97) and thus gives us another letter that substitutes the hyphens locations in this chuck. If no hyphen is found, the algo simply counts for how many chunks none were find and adds this up sa a
    number.
    These concatenated letters + skip-numbers then result in the replacement token that gets appended on the end of the domain name (hyphens removed, dots replaced with hyphens). 
    Oh and yeah, between these two parts a '0' is added as delimiter.
    That's it. I hope we got it correct.
    Regards
    Lukas @ cyon GmbH

Maybe you are looking for