MS DNS VS Unix Bind

G

Guest

Guest
Archived from groups: microsoft.public.win2000.dns (More info?)

I am currently working in a MS environment with 4000 xp
and nt clients. We recently migrated from NT to a 2000
Active Directory integrated environment. Our Domain
Controllers are using each other as a DNS source; however,
all of our clients are pointing to a non-dynamic Unix DNS
server. What are the advantages and disadvantages of
moving to a dynamic Microsoft DNS solution.
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.dns (More info?)

In news:2d56701c469b7$691a9d20$a301280a@phx.gbl,
bredskin <anonymous@discussions.microsoft.com> posted a question
Then Kevin replied below:
> I am currently working in a MS environment with 4000 xp
> and nt clients. We recently migrated from NT to a 2000
> Active Directory integrated environment. Our Domain
> Controllers are using each other as a DNS source; however,
> all of our clients are pointing to a non-dynamic Unix DNS
> server. What are the advantages and disadvantages of
> moving to a dynamic Microsoft DNS solution.

Clients are not required to register in DNS, so you can point the clients to
a non-dynamic DNS but, ONLY if the non-dynamic DNS has a copy of the AD DNS
zone or IF the non-dynamic DNS has the AD sub folders delegated to the AD
DNS server.

The advantage to using dynamic DNS on your clients are if they have shared
resources, then the clients can be located in DNS for their shared resouces.
The advantage to using the MS DNS is that if your clients are going to
register in DNS, you can use only secure updates on an AD integrated zone,
which makes the zone more secure on MS DNS.

Your clients can't make secure updates on the BIND DNS, secure updates to a
BIND DNS must be made from a BIND DHCP server. Just having DHCP register in
DNS, you can lose some security because any client that can get an address
from DHCP can be registered in DNS then.

--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
============================
--
When responding to posts, please "Reply to Group" via your
newsreader so that others may learn and benefit from your
issue. To respond directly to me remove the nospam. from my
email. ==========================================
http://www.lonestaramerica.com/
==========================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
==========================================
Keep a back up of your OE settings and folders with
OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
==========================================