xx

[Mark Andrews]

> "Clenna Lumina" <savagebeaste at yahoo.com> wrote:
> 
> >With all due respect, why on earth would you want ot use Windows DNS 
> >over Bind for a master? AFAIK, Win DNS <=> Bind can be very problematic 
> >from what I have read.
> 
> What you have read must be old.  I have been running an MS DNS Server
> as a master for AD with BIND slaves.  I had initial problems in 1999,
> but after some MS fixes in 2000, I have had few problems.
> 
> As to why this configuration?  BIND does not yet support the MS GSS-TSIG
> authorization for secure dynamic DDNS (as "required" by Active
> Directory).  I have around 45 zones on the MS W2k+3 DNS Server.

	I suggest that you look at BIND 9.5.0a5.  It supports
	GSS-TSIG (on everything but Windows, where we have problems
	with the Kerberos libraries).

	Mark
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org