(B17) Windows Server part18 DNS -Records, Lookup Zones -Forward Reverse, Primary and Secondary Zones

20220426 123936
DNS Records

SOA – Start of Authority
NS – Name Server
HOST(A) – host’s ipv4 address
HOST(AAAA) – host’s ipv6 address
CNAME(ALIAS) – alias duplicate name or other name
MX – mail exchange server
SRV – service location
PTR – pointer record

SOA – will increment when a record is add,remove, modify
NS – name server dns servers information
SRV -tells what is the host offering the service , DC, GC, ADC…
——————
DNS lookup zone:

Forward lookup Zone:flz – Name to ip address –belongs domains
Reverse Lookup Zone:rlz – ip address to name(fqdn)–belongs network
Forward Lookup Zone:
domain17.com
_msdcs
-dc-tcp kerberos srv –host offering this service(fqnd of domain controller)
-gc
-pdc
– SOA 10
– NS wins1.domain17.com
wins1 Host(A) 172.16.0.254 -fqdn-wins1.domain17.com
PC1 Host(A) 172.16.0.101 -fqdn-pc1.domain17.com
PC2 Host(A) 172.16.0.102 -fqdn-pc2.domain17.com
PC3 Host(AAAA) 2000::A -fqdn-pc3.domain17.com
web1 Host(A) 172.16.0.80 -fqdn-web1.domain17.com
www cname web1.domain17.com -fqdn-www.domain17.com
mail1 Host(A) 172.16.0.25 -fqdn-mail1.domain17.com
mail1 MX mail1.domain17.com
pc5 host(A) 192.168.0.12 -fqdn-pc5.domain17.com

Pune
PCA host(A) 172.16.1.11 -fqdn-pcA.pune.domain17.com

contoso.com
SOA
NS
PC4 Host(A) 172.16.0.104 -fqdn-pc4.contoso.com

————————-
Reverse Lookup Zone:
16.172.in-addr.arpa
SOA
NS
172.16.0.254 PTR wins1.domain17.com
172.16.0.101 PTR pc1.domain17.com
172.16.0.102 PTR pc2.domain17.com
172.16.0.80 PTR web1.domain17.com
172.16.0.25 ptr mail1.domain17.com
172.16.0.104 PTR pc4.contoso.com

0.168.192.in-addr.arpa
192.168.0.12 ptr pc5.domain17.com

——————————————————-
*web1.domain17.com — www.domain17.com

domain17.com –domain controller created –
ADDS create record in dns -domain17.com — _msdcs folder – dc gc pdc

when we install/configure domain controller, domain controller-ADDS create records in dns for Domain controller
under domain name , ‘_msdcs’

srv records store under ‘_msdcs’

service location record

tells which host is offering the perticular service

kerberos –
ldap –

who is your GC, DC, PDC…
—————
When we create a domain -zone option are

Primary Zone -Read and Write
Secondary Zone -Read only
Stub Zone -NS records , glue host(a) record
-Active Directory Integrated

DNS Server1 DNS Server2
domain17.com -primary zone domain17.com – Secondary
read and write read only
-see, add, remove, modify -see/check , no add/remove/modify

*records in primary zone is trasfor record to secondary zone
SOA[40] SOA[30]
——ask SOA[30]—-
——–SOA[40]—
—transfor difference–
—transfor record —

—————-
AD Integration:
dns records store in AD database(NTDS.DIT)

primary zone -check AD integrated — records store in AD database
-uncheck AD integrated — records store in C:windowssystem32dns
—————
nslookup — check default dns server name and ip address
who is your dns server
————–

source

by Latif Shaik

windows server dns forwarder