Win 2K & Bind

[Jim Traeber]

On Mon, Apr 30, 2001 at 02:15:31PM -0500, Kenneth Kalan wrote:
> 
> Lately I've been starting to see users with questions about w2K and bind.
> 
> I want to upgrade to bind 9.1.1 but have recently been approached by a 
> couple departments to allow them to run their own dns on a win 2k server to 
> it can happily exist with the deployment of w2k desktops and active 
> directories.
> 
> I really don't want to do this, I'd like the dns to stay in one place.  I'd 
> appreciate  if someone could point me to some resources (URL's or Books) on 
> how to make win2k and bind play nice together.  What the win 2k folks need 
> to do to configure their machines and also for setting up bind to work with 
> win 2k and active directories.
> 
> I'd like to be able to tell them that we can setup bind to work with win2k, 
> keeping dns in one place (on a unix sytem), yet allowing them that same 
> functionality as though dns was moved to a wintel box.
> 

The best compromise I've seen so far (when all parties are agreeable to
the terms) is to create subdomains specifically for the w2k systems on
your network.  Delegate those subdomains from your UNIX DNS servers to
the w2k DNS servers.  If your network topology allows it, delegate the
reverse zones to the w2k servers as well.  With a bit of manual
configuration, the w2k DNS servers can work with classless in-addr.arpa
delegation as well if you need it (didn't personally watch the testing of
the w2k side of this, but heard the test results were positive).

This gives the w2k environment plenty of room to do what it wants with
active directory/dhcp/dns resource information, while providing a 
maintainable interface to the rest of your network.  

I wouldn't recommend trying to integrate the two environments much further
than this unless your circumstances absolutely require it.