In Part 1 we’ve had a chance to explore the zones that got created when Active Directory was setup, so let’s take a look at creating our own zones.Now there’s several reasons you may need your own zones.
One example would be you have namespaces that have nothing to do with Active Directory and you want to be able to do name resolution for them, like with web servers, sharepoint apps etc. I will configure it on my DC01 (which is domain controller and DNS is integrated) Right-Click on Forward Lookup Zones and select New Zone Welcome to the New Zone Wizard will pop-up, Click Next Zone Type page, The first question that we have to answer is what kind of zone do we want and this is a very important question.
I will create Primary Zone (When you create primary zone it will be the read/writable copy , which means I can add and delete records from it.) I also want to store this zone in AD.
Now not all of your machines are going to be able to authenticate. Let’s create another Primary Zone but this time I will uncheck Store the zone in Active Directory….
You may have them not members of the domain and so you may need to set this to allow both non-secure and secure dynamic updates. Right-Click on Forward Lookup Zones and select New Zone Welcome to the New Zone Wizard will pop-up, Click Next On Zone Type page, Leave Primary Zone but uncheck Store the zone in AD….
Now again, a client can update their IP address making our lives much easier, so we don’t have to manually do this, and of course, with DHCP possibly assigning that client a different address this works out best, but what’s the most secured option?