Windows Server DNS

Setup A DNS Server correctly.


A DNS server (Server 2003) follows specific steps in its name-resolution process.
- first queries its cache,
- checks its zone records,
- sends requests to forwarders
- and then it tries resolution by using root servers.

By default, a Microsoft DNS server connects to the Internet to process DNS requests more with root hints. When you use the Dcpromo tool to promote a server to a domain controller, the domain controller requires DNS. If you install DNS during the promotion process, a root zone is created.

This root zone indicates to your DNS server that it is a root Internet server. Therefore, your DNS server does not use forwarders or root hints in the name-resolution process.

Click Start, point to Administrative Tools, and then click DNS.
Expand ServerName, where ServerName is the name of the server, click Properties and then expand Forward Lookup Zones.
Right-click the "." zone, and then click Delete.


If you are after Internet resolution, your DNS will do that anyway by using the Root hints but you can make it more efficient by configuring a forwarder.

The AD cardinal rule:
ONLY use the internal DNS, and configure a forwarder for efficient Internet access.
Do Not ever use your ISP's or any other DNS in IP properties that does not either host the AD DNS zone or that does not have a reference to it (such as your ISP's).