DNS Server Infrastructure Design

Similar Messages

• Infrastructure Design

  Hi All,
  I'm looking for a bit of advice around SQL Server infrastructure design.  Currently we have around 35 instances of SQL Server installed in our organisation all on separate servers.  Most instances have only a couple of database running on them although
  there are a few which have more. When implementing new applications we are often told by vendors that they require a dedicated SQL Server for their applications to perform well.  Going forward I'd like to implement a good quality robust infrastructure
  for our SQL Servers that would see a reduction in the number of servers and more database per instance.  Any advice on this and what other are doing within their organisations would be appreciated.
  Cammie 

  Hi Cammie,
  Yes I hear this all the time from vendors.  We're using larger VMs with lets say 128gb of ram assigned with 16 processors and just using multiple SQL instances per VM.  You just have to make sure you tune the instances correctly for proper sizing
  on the CPU and memory side.  The only problem you will really run into is if your dealing with a vendor that hasn't put much thought into their product line and can only operate out of the default SQL instance and over the default SQL port.  Most
  vendors take a different design approach and can deal with sqlservername\instance type installs and non standard ports. 

• DNS server cannot be created because the authoritative parent zone

  I am working in 2008r2sp1.  I tried adding DNS Server and DHCP Roles first.  Then under DNS Forward Lookup Zones I added "mysite.com" as a New Zone.
  Also I searched my computer for a "NTDS" folder and the only on I found was "C:\Windows\inf\NTDS".
  A delegation for this DNS server cannot be created because the authoritative parent zone cannot be found or it does not run Windows DNS server. If you are integrating with an existing DNS infrastructure, you should manually create a delegation to this DNS server in the parent zone to ensure reliable name resolution from outside the domain "artisdextri.com". Otherwise, no action is required.
  The folder C:\Windows\inf\NTDS> is not valid. Specify a valid path, including drive letter. For example: C:\NTDS.
  dcpromo /unattend:"C:\Users\Administrator\Documents\ForestAdd.txt"
  ForestAdd.txt
  [DCINSTALL]
  InstallDNS="yes"
  NewDomain="forest"
  NewDomainDNSName="mysite.com"
  DomainNetBiosName="MYSITE"
  ReplicaOrNewDomain="domain"
  ForestLevel="4"
  DomainLevel="4"
  DatabasePath="C:\Windows\inf\NTDS>"
  LogPath="C:\Windows\inf\NTDS"
  SYSVOLPath="c:\Windows\SYSVOL"
  SafeModeAdminPassword="pass1"

  Hello,
  If this is the first forest root DC, just ignore the information.
  Check the blog:
  A delegation for this DNS server cannot be created because the authoritative parent zone cannot be found or it does not run Windows DNS server.
  http://blogs.technet.com/b/activedirectoryua/archive/2011/07/07/a-delegation-for-this-dns-server-cannot-be-created-because-the-authoritative-parent-zone-cannot-be-found-or-it-does-not-run-windows-dns-server.aspx
  Hope this helps.

• Sudden Server Infrastructure Licensing errors SBS 2011 Standard install (10 months old)

  The following errors began about a month ago and I can't figure out how to fix it.  I especially don't like that it states the server will be shut down in 22 days.  When I rebooted the server last week the problem went away for exactly 24 hours
  then came back and seems to report every 4 hours.
  Background:
  Fresh SBS 2011 install last Dec. 7th (2012).
  We did have an SBS 2003 server but it was never on the same network.  We simply backed up the data off of its data drive.  Exchange was backed up via OST to PST conversion then imported in.  Only 10 - 12 users.
  HP ProLiant server and the SBS 2011 DVDs were OEM supplied by HP but we installed NOT pre-installed.
  Thx,
  D
  Server Infrastructure Licensing
  38 10/8/2013 2:47:03 AM
  18
  Event Details:   
  The Root Domain Check detected a condition in your environment that is out of compliance with the licensing policy. This server will be automatically shut down if the issue is not corrected in 22 day(s) 8 hour(s) 0 minute(s). Please look for additional events
  for Root Domain Check to troubleshoot.
  Server Infrastructure Licensing 2
  10/8/2013 2:47:03 AM 12
  Event Details:   
  The Forest Trust Check in the Licensing component did not pass because error 0x80070008 occurred in function fe1 [RKIQ]. Not enough storage is available to process this command. Make sure that each primary domain controller in your Active Directory forest can
  be contacted and the following services are running on it: Active Directory Domain Services (NTDS), DNS Server (DNS) and Kerberos Key Distribution Center (KDC). This server will be automatically shut down if the issue is not corrected.
  Server Infrastructure Licensing 3
  10/8/2013 2:47:03 AM 12
  Event Details:   
  The FSMO Role Check in the Licensing component did not pass because error 0x80070008 occurred in function f2 [KRTC]. Not enough storage is available to process this command. Make sure that your DNS server can be contacted and the following services are running:
  Active Directory Domain Services (NTDS), DNS Server (DNS), Kerberos Key Distribution Center (KDC). This server will be automatically shut down if the issue is not corrected.
  Server Infrastructure Licensing 50
  10/8/2013 2:47:03 AM 6
  Event Details:   
  Root domain check did not pass because error 0x80070008 occurred in function f1980 [QJTA]. Not enough storage is available to process this command. Make sure that the domain that this computer is joined is reachable. This server will automatically shut down
  if the issue cannot be corrected.

  Not sure if it helps but I just wanted to add the following alerts emailed to me:An alert was detected on your network. Further investigation into the issue is recommended.
  Computer: NESRV
  Date/Time generated: 10/8/2013 2:47:03 PM
  Title: Forest trust licensing error
  Source: License Compliance service
  Description: 
  The Forest Trust Check in the Licensing component did not pass because error 0x80070583 occurred in function fe1 [ZHUS]. 
  Class does not exist.
  Make sure that each primary domain controller in your Active Directory forest can be contacted and the following services are running on it: Active Directory Domain Services (NTDS), DNS Server (DNS) and Kerberos Key Distribution Center (KDC). This server will be automatically shut down if the issue is not corrected.
  Computer: NESRV
  Date/Time generated: 10/8/2013 2:47:03 PM
  Title: FSMO roles licensing error
  Source: License Compliance service
  Description: 
  The FSMO Role Check in the Licensing component did not pass because error 0x80070583 occurred in function f2 [OKDF]. 
  Class does not exist.
  Make sure that your DNS server can be contacted and the following services are running: Active Directory Domain Services (NTDS), DNS Server (DNS), Kerberos Key Distribution Center (KDC). This server will be automatically shut down if the issue is not corrected.

• Application Server Infrastructure

  please help me,
  i installed application server infra and midtier in my local machine, but when i tried to logon to Application Server Infrastructure page using the address <http://xxxx:18100/> its give me a prompt to enter the u/p so i put ias_admin and the password then its give me empty page and the following address in the address bar http://xxxx:18100/emd/console/targets "xxxx is my computer name"
  when i want to logon to midtier its i put <http://xxxx:18101/> then after the prompt its enable me to logon and see the both infra and middtier when i press in middtier i can see all services is green , when i click on middtier its give this error:
  **An error was encountered while loading page. We were unable to find a target. This probably indicates a stale bookmark, or a configuration problem.**
  and this address on the address bar:"http://xxxx:18100/emd/console/ias/applicationServer$farm=infrastucture.xxxx$type=oracle*_ias$target=infrastucture.xxxx?event=doLoad"
  all infra services is alive except dsa and logloader wich is normal

  Hi.
  Maybe it's a name problem, usually when you install and your don't have configured the /etc/host file or DNS like
  *10.50.0.0 mycomputer.mydomain.com*
  and you have none or have
  *10.50.0.0 mycomputer*
  The installer may use one domain like mycomputer.com
  Try to check in the infra oracle host under /install/ias.config you will be able to find the appropiated name, and if so, you may change your /etc/host file as is there.
  Regards.

• Install 11gr2 RAC, dose all IP needs to go in DNS server or just 3 scan ip

  Hello,
  I am bulding a brand new 2 node RAC cluster (11gR2). But i know this new version has some big changes with the scan. My question is, do all the IP needs to be in a DNS server or just the 3 IP related to the scan ??
  So do i need to put in 2 public, 2 private, 2 VIP, 3 scan ip (all 9 of them) in the DNS or just the 3 scan ip ???

  it depends. If you decide to use GNS then no but it you want to do manual configuration of the oracle network portion then yes. (Personally I would suggest do so just as a fallback but that's just me).
  the following from the install guide explains it best:
  1.2.4 Overview of Network Connection Requirements
  The following is an overview of network configuration requirements for Grid Naming Service (GNS) in a Grid Plug and Play configuration, and manual network configuration. Network administrators and system administrators can refer to the Preinstallation chapter in Oracle Grid Infrastructure Installation Guide for your platform for detailed configuration information.
  The network configuration for Oracle Clusterware and Oracle RAC requires several addresses. The following is a list of those addresses:
  GNS virtual IP address (GNS installations only): A static IP address configured in the GNS. The GNS virtual IP listener forwards queries to nodes in the subdomain on the cluster managed by GNS.
  Within the subdomain, the GNS uses multicast Domain Name Service (mDNS) to enable the cluster to map hostnames and IP addresses dynamically as nodes are added and removed from the cluster, without requiring additional host configuration in the DNS.
  To enable GNS, you must have your network administrator provide a set of IP addresses for a subdomain assigned to the cluster (for example, grid.example.com), and forward DNS requests for that subdomain to the GNS virtual IP address for the cluster, which GNS will serve.
  Single Client Access Name (SCAN): A domain name that resolves to all the addresses allocated for the SCAN. Oracle recommends that you allocate three addresses to the SCAN. During Oracle Grid Infrastructure installation, listeners are created for each of the SCAN addresses, and Oracle Clusterware controls which server responds to a SCAN address request.
  For high availability, you should provide at least three IP addresses in the DNS to use for SCAN mapping for high availability. A SCAN domain name must be unique within your corporate network.
  Virtual IP address: A public internet protocol (IP) address for each node, to be used as the Virtual IP address (VIP) for client connections. If a node fails, then Oracle Clusterware fails over the VIP address to an available node.
  During installation, if you do not use Grid Naming Service (which provides the VIP automatically), you provide VIP addresses. The VIP for each node is associated with the same interface name on every node that is part of your cluster. If you have a domain name server (DNS), then your network administrator should register the host names for the VIP with the DNS, so that it is resolvable from any client, as well as the cluster nodes. The VIP should not be in use at the time of the installation, because this is an IP address that Oracle Clusterware manages.
  Public IP address: A public host name address for each node, assigned by GNS, or assigned by the system administrator during initial system configuration for manual configurations. The public IP address name must be resolvable to the hostname. Register both the public IP and the VIP address with the DNS. If you do not have a DNS, then you must make sure that both public IP addresses are in the node /etc/hosts file (for all cluster nodes).
  Private IP address: A private IP address for each node to serve as the private interconnect address, dedicated exclusively to internode cluster communication. GNS configures the address automatically. If you select manual configuration, then you must ensure that the following is true for each private IP address:
  o
  It must be separate from the public network
  o
  It must be accessible on the same network interface on each node
  o
  It must be connected to a network switch between the nodes for the private network; crosscable interconnects are not supported
  The private interconnect is used for internode communication by both Oracle Clusterware and Oracle RAC. If you use manual configuration, then the private IP address must be available in each node's /etc/hosts file. Oracle recommends that it is configured on a dedicated switch (or switches) that are not connected to anything other than the nodes in the same cluster.
  Note:
  All host names must conform to the RFC 952 standard, which permits alphanumeric characters. Host names using underscores ("_") are not allowed.

• Access Connection​s fails to recognize DNS server for wired Ethernet connection​s

  I'm running Windows 7 on a Thinkpad T410i.  I ran the Lenovo update yesterday which updated Access Connections from 6.01 to 6.21.  I then could not make any network connections to the Internet.  I used Windows System Restore to back out the changes made by the Lenovo updater. 
  Since then, I am able to connect to the Internet using the wireless adapter, but the wired LAN connection fails to connect to the Internet because it doesn't recognize the DNS servers  The wired LAN adapter is the Intel 82577LM Gigabit Network Connection.  The IP v4 configuration settings haven't changed (use DHCP, obtain IP and DNS addresses automatically), but it can't seem to connect to the DNS servers. 
  The message from Windows Network Diagnostics is:
  Your computer appears to be correctly configured, but the device or resource (DNS server) is not responding. 
  The symptoms appear the same as in this problem in the Lenovo support library, but that was occuring with Access Connections 2.60, a much earlier version of the software:
  Network connection is not working if Access Connection is used to set DNS information - ThinkPad General
  Symptom
  When a wired (Ethernet or Token Ring), network profile is created with Access Connections v2.60, the user may be unable to connect to a LAN or the Internet.
  Affected configurations
  Any model ThinkPad system using Access Connections v2.60
  Does anyone have any suggestions?  Thanks!
  Michael

  pariswd wrote:
  Hello Lenovo?  Are you hearing us?
  Welcome to the forum!
  Yes, some Lenovo employees do read and post to this forum.  Mark is quite active, and several others post as well.  In addition, there are lurkers who just read without making public comments although sometimes they ask the mod team to either gather more information or pass along advice.
  However, here are the expectations of their participation from the Welcome message:
  These communities have been created to provide a high quality atmosphere in which users of Lenovo products and services may share experiences and expertise. While members from Lenovo may participate at intervals to engage in the discussions and offer advice and suggestions, this forum is not designed as a dedicated and staffed support channel.
  The bottom line is there's no guarantee that you will get an answer to a question here directly from Lenovo. 
  On the other hand, you just might!  ;-)
  English Community   Deutsche Community   Comunidad en Español   Русскоязычное Сообщество
  Jane
  2015 X1 Carbon, ThinkPad Slate, T410s, X301, X200 Tablet, T60p, HP TouchPad, iPad Air 2, iPhone 5S, IdeaTab A2107A, Yoga Tablet, Yoga 3 Pro
  I am not a Lenovo Employee.
  I AM one of those crazy ThinkPad zealots!
  If you find a post helpful and it answers your question, please mark it as an "Accepted Solution"!

• Server Infrastructure Licensing - Automatic Shut down

  I have tried the other threads but pretty much everything goes off in other directions :(
  I joined my new employer a few months ago and inherited a windows 2012 essentials server. I have since discovered that the server is shutting itself down automatically due to errors in Server Infrastructure Licensing.
  I will paste some below for example.
  =====
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          01/09/2013 07:18:08
  Event ID:      2
  Task Category: None
  Level:         Error
  Keywords:      
  User:          SYSTEM
  Computer:      TYCHE.hlaw.local
  Description:
  The Forest Trust Check in the Licensing component did not pass because error 0x80070008 occurred in function fe1 [QRKD].
  Not enough storage is available to process this command.
  Make sure that each primary domain controller in your Active Directory forest can be contacted and the following services are running on it: Active Directory Domain Services (NTDS), DNS Server (DNS) and Kerberos Key Distribution Center (KDC). This server will
  be automatically shut down if the issue is not corrected.
  ======
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          01/09/2013 07:18:08
  Event ID:      38
  Task Category: None
  Level:         Error
  Keywords:      
  User:          SYSTEM
  Computer:      TYCHE.hlaw.local
  Description:
  The Forest Trust Check detected a condition in your environment that is out of compliance with the licensing policy. This server will be automatically shut down if the issue is not corrected in 27 day(s) 20 hour(s) 0 minute(s). Please look for additional events
  for Forest Trust Check to troubleshoot.
  ======
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          01/09/2013 07:18:08
  Event ID:      3
  Task Category: None
  Level:         Error
  Keywords:      
  User:          SYSTEM
  Computer:      TYCHE.hlaw.local
  Description:
  The FSMO Role Check in the Licensing component did not pass because error 0x80070008 occurred in function f2 [ORJF].
  Not enough storage is available to process this command.
  Make sure that your DNS server can be contacted and the following services are running: Active Directory Domain Services (NTDS), DNS Server (DNS), Kerberos Key Distribution Center (KDC).  This server will be automatically shut down if the issue is not
  corrected.
  ======
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          01/09/2013 07:18:08
  Event ID:      38
  Task Category: None
  Level:         Error
  Keywords:      
  User:          SYSTEM
  Computer:      TYCHE.hlaw.local
  Description:
  The FSMO Role Check detected a condition in your environment that is out of compliance with the licensing policy. This server will be automatically shut down if the issue is not corrected in 27 day(s) 20 hour(s) 0 minute(s). Please look for additional events
  for FSMO Role Check to troubleshoot.
  =======
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          01/09/2013 07:18:08
  Event ID:      50
  Task Category: None
  Level:         Error
  Keywords:      
  User:          SYSTEM
  Computer:      TYCHE.hlaw.local
  Description:
  Root domain check did not pass because error 0x80070008 occurred in function f1980 [NYGH].
  Not enough storage is available to process this command.
  Make sure that the domain that this computer is joined is reachable. This server will automatically shut down if the issue cannot be corrected.
  =======
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          01/09/2013 07:18:08
  Event ID:      38
  Task Category: None
  Level:         Error
  Keywords:      
  User:          SYSTEM
  Computer:      TYCHE.hlaw.local
  Description:
  The Root Domain Check detected a condition in your environment that is out of compliance with the licensing policy. This server will be automatically shut down if the issue is not corrected in 27 day(s) 20 hour(s) 0 minute(s). Please look for additional events
  for Root Domain Check to troubleshoot.
  ====
  These 6 errors repeat over and over every few hours until server shuts down.
  From trying to research this most posts reference server 2008, or old kb articles which are not related to 2012 or suggesting I have other domain controllers. I don't just this server which for all intents and purposes works correctly and as intended apart
  from the shutdown.
  As i understand it essentials includes 25 licenses we currently only have 14 users. Actually whilst we are on that subject, I was looking at what we do when we hit 25, Im reading that we have to buy Server 2012 standard and do in place license change, and
  then we have to buy cals. So does this mean we have to then buy 25cals to keep current users and then buy more on top? or does the upgrade from essentials include 25 licenses when you switch? MS's documentation is anything but clear.
  Thanks for any help in advance.

  I too have a server that shuts down monthly due to the Server Infrastructure Licensing check erroneously failing.
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          8/1/2014 6:38:44 PM
  Event ID:      50
  Task Category: None
  Level:         Error
  Keywords:     
  User:          SYSTEM
  Computer:     
  Description:
  Root domain check did not pass because error 0x80070008 occurred in function f1980 [EURR].
  Not enough storage is available to
  process this command.
  Make sure that the domain that this computer is joined is reachable. This server will automatically shut down if the issue
  cannot be corrected.
  Log Name:      Microsoft-Windows-Server Infrastructure Licensing/Operational
  Source:        Microsoft-Windows-Server Infrastructure Licensing
  Date:          8/1/2014 6:38:44 PM
  Event ID:      2
  Task Category: None
  Level:         Error
  Keywords:     
  User:          SYSTEM
  Computer:     
  Description:
  The Forest Trust Check in the Licensing component did not pass because error 0x80070008 occurred in function fe1 [YJBI].
  Not
  enough storage is available to process this command.
  Make sure that each primary domain controller in your Active Directory forest can be contacted and the following services
  are running on it: Active Directory Domain Services (NTDS), DNS Server (DNS) and Kerberos Key Distribution Center (KDC).
  This server will be automatically shut down if the issue is not corrected.
  I've verified that this server holds the fsmo roles, and that DNS is properly configured. It's the only server in a three workstation environment. They have 800GB of free space. I basically have the identical problem as the poster. It's bothering me that when
  a MS service fails, the servers reliability is put into jeopardy. MS we've paid you. Please fix this.

• How can I disable the internet ( DNS server ) contact for an executable generated in LV?

  I write and sell stand alone LV generated executables to people for Optical design purposes.  We recentely upgraded to version 8.2 from LV6.1 and love many of the new features, but now my firewall notifies me when I fire up a stand alone.  I do not want to field calls from customers about whether or not my program is a form of spyware.....
  How do I disable this DNS server connection attempt?
  I see an old thread for this, but no resolution.
  Thanks

  A DNS lookup does not mean much. Do you know if it generates any real traffic afterwards, e.g. contacting the server it just tried to resolve? What server? What port?
  Does the DNS query also happen if you run the code in the development system?
  LabVIEW Champion . Do more with less code and in less time .

• Complex Infrastructure Design Challenges

  Hi 
  I need some advice on a infrastructure design. I am hoping someone can help or point me in the right direction.
  Requirements are as follows
  - Sharepoint 2013 3-Tier Design
      -> Front-End Cluster
      -> App Tier
      -> SQL Cluster
  Aside from the requirements from a server perspective which provides it's own challenges there needs to be Single-Sign On, however multi-domain support will be challenging since there will be two AD Forests with no trust relationship being allowed. 
  I have the following challenges:
  - One of the two domains there will be full control on the service accounts and the management environment, but using the servers on that domain as the initial domain will be very limiting in it's own sense. The other domain there will be limited or no control
  - Single sign on nightmare is that these two domains have no trust relationship and never will. How could I manage that with the above point also holding true. I saw an article on ADFS that will be able to provide the transparent authentication level but
  what would be required from access perspective to have ADFS tied in with the domain which there will be no control over
  - The servers is currently joined on the domain with the limited control the possibility to intall cluster services, sql services and sharepoint services is a bit limited. This can be switched to the domain with the complete control but the Single sign on
  nightmare will be the ultimate deciding factor 
  Help, advice or any resource documents with examples of such scenario's would be helpful
  Can someone point me in the direction I need to be. I am happy to read up on any knowledge articles if there are any

  Starting with ADFS, you will want to establish ADFS Federation. This means that the domain you have no control over also has an ADFS server. The only requirements for that implementation is opening TCP/443 to the ADFS server (or ADFS proxy) and it must be
  a member of the domain (an ADFS proxy does not).
  Alternatively, you could provide Active Directory accounts to all of the users for the other domain in the domain you do have control over, but this likely isn't desirable.
  As for the servers, you won't be able to just disjoin them and join another domain. Instead, you're going to have to build a brand new implementation and copy content over (e.g. copy the databases from the first implementation to the second).
  Trevor Seward
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• SQL Server Infrastructure Evaluation

  I am trying to come up with a check list / guidelines for evaluating Existing SQL Server Infrastructure.
  Evaluate Existing Capacity , Data growth Rate , Capacity Predictions, Security Model , Availability / Disaster Recovery Options, Configuration Options, Table / Index Design Guide lines , Performance Tuning Guide lines, Hardware Selection , RAID Providers,
  etc.
  I want this be useful information our team can reference for making decisions.I am planning to spend about 100 hrs gathering and documenting this information. 
  Has anyone done similar kind of guidelines for his / her team. I would love to learn what approach to follow?
  I would appreciate pointers and useful links on this topic.
  I know its really big ask. I am taking this task because I work for extremely small organization with limited resources and limited knowledge. I want to provide meaningful documentation for my team which doesn't have much expertise. 
  Thanks,
  I90Runner

  What you are asking for is a mix of -
  Guidelines/Best Practices - for infrastructure setup and capacity planning, development, maintenance
  Trend Analysis - for maintenance and capacity projections
  System Documentation - for maintenance and identify opportunities of scaling up/out
  Guidelines and best practices will have to be looked upon from different sources e.g. MSDN, blogs, SQLCAT whitepapers, forums, technet wiki, books etc.
  You will have to create and setup your own processes that gather trends like disk space, database/table sizes, CPU, frequently used and/or heavy queries etc. Some of this information can be had from DMVs or you can write own stored procs, SSIS
  packages or maybe even consider using some 3rd-party vendor tools.
  Same goes for system documentation. It has to be created and updated manually using the options described above for trends.
  The system documentation can be gathered quickly but the others will take time and patience! Good luck :-)
  - Aalam | (Blog)

• DNS Issues, can't set static DNS server

  I have an Airport Extreme (which I'll call the router). It has an IPv6 tunnel (to Hurricane Electric), so it hands out IPv4 DHCP and announces an IPv6 network as well. The DNS servers configured on the router are OpenDNS'.
  My Apple TV 2 is connected via wired Ethernet to the router. It was using a DHCP address provided by the router, which made the DNS server the same address as the router. I wanted to manually set the DNS to use my ISP's, so that I can make sure the Netflix streaming issue I have is not a DNS issue.
  So I changed the Apple TV to a manual address, and set the DNS server to my ISP's DNS server (Apple TV can only have one DNS server? Odd.)
  After I save this, the Network page shows the correct manual IP, mask, and router, but the DNS Address is an IPv6 address (one that belongs to my network, but the entire address isn't visible), not the one I set. When I Configure TCP/IP again, and I reach the DNS Address page, the first digit of the existing address is "20", and the rest of the digits are "0". Interesting note as well: if I press Down, the number will increment to 19, and so on, but if I press Up, it changes to 0. Obviously the UI isn't designed for IPv6 addressing, but there's an IPv6 address in there nevertheless.
  Screenshots:
  http://www.flickr.com/photos/random_robin/5310011344/
  http://www.flickr.com/photos/random_robin/5310016288/
  I have tried to set the DNS Address multiple times now, and have restarted the Apple TV. The IPv6 DNS Address persists.

  After 16 hours of working i don´t have seen this easy solution. I had tried with Internet Explorer and Opera but finaly i have need to use Firefox.
  Thanks a lot to solve it.

• Exchange 2013 server infrastructure

  What if, my organization has asked me to design Exchange 2013 server infrastructure for its 5000 employees.
  I need to design an architecture considering both high availability within the Data Center, and site resiliency between two datacenters. And I am told to have two Active Directory sites. What can be the two main reasons for it?

  Hi Andy,
  I need to answer the online question in one of my interviews.
  "A site implies LAN , well-connected ,quality
  within it. Do you have that between the 2 data centers." I agree with you. 
  The question I am asked is:
  Your organization has asked you to design Exchange 2013 server infrastructure for its 5000 employees. You need
  to design an architecture considering both high availability within the Data Center, and site resiliency between two datacenters. You are told to have two Active Directory sites. What are the two main reasons for it?
  Your time on this  will be greatly appreciated.
  Thanks,
  IB

• I am getting "dns server not responding"

  I am staying in a hotel and my 3gs iphones keep getting "dns server not responding"  my computers work fine in my room.  My iphones don't but if I walk out in the hallway the iphones work fine. Help?

  Found what was the problem on my configuration.
  Since NLB VIP did not respond when traffic was going from other networks (Internet  included) i had to reconfigure NLB from unicast to multicast. Then thing started to work but i had DNS resolution error.
  Solution:
  A BUG! When you change NLB cluster type, ipv6 that is configured on it gets removed so you have to enter it again. That's the same IPV6 IP under Infrastructure servers - DNS that ends with :3333::1 for your .domain.local

• Cisco 1821 as DNS server

  Hello I have a cisco 1821 router acting as remote access for vpnclients, LAN LAN VPN device and also
  LAN router. All in one.
  My LAN has a 192.168.23.0/24 addressing, and router has 2 IP Addresses, one on public IP on the public interface Fa0/1
  and 192.168.203.1 on the private interface Fa0/0
  I set up it as a name server for local LAN:
  ip dns server
  ip host pc10 192.168.203.10
  ip host pc83 192.168.203.83
  ip host c1821 192.168.203.1
  I did this so that local PC on my lan can have a resolution for local addresses since I do not have a DNS server inside my line
  and I do not have a Active Directory infrastructure.
  on the public IP interface my router can be queried for LOCAL IP  resolution for my lan 192.168.203.0/24, I Tryed from outside using dig command.
  I Wanted to prevent this. I cannot use an ACL because I would prevent DNS queries to work in general. trying to resolve
  an external IP Address from inside my lan, I just want the router to refuse DNS resolution for any query coming to external interface,
  while I Want to allow only queries coming form my local lan to internal interface.
  is this possible in some way ?
  thank you
  Riccardo

  You are asking your IOS device to act as a split-DNS server, providing RFC1918 addresses on internal interfaces, and global address (or no addresses) on the public inetrface.
  Look at the "ip dns view" command so you can present differnt DNS responses by interface.
  This article may help:
  http://www.nil.com/ipcorner/RouterDNS/