Update Workflows/Windows/Windows Server/Roles/DNS/Best Practices.md
All checks were successful
GitOps Automatic Deployment / GitOps Automatic Deployment (push) Successful in 7s
All checks were successful
GitOps Automatic Deployment / GitOps Automatic Deployment (push) Successful in 7s
This commit is contained in:
@ -15,10 +15,13 @@ This document outlines best practices for DNS server configuration in Active Dir
|
||||
* **Extended Reason:** Using only internal DNS servers increases security and streamlines DNS operations.
|
||||
|
||||
### DNS Server Self-Referencing
|
||||
* **A DNS server should have 127.0.0.1 loopback as a secondary or tertiary DNS server.**
|
||||
* **A DNS server should have `127.0.0.1` loopback as a secondary or tertiary DNS server.**
|
||||
Improves the DNS server’s own performance and availability.
|
||||
* **Extended Reason:** Setting the loopback address as the primary DNS can prevent Active Directory from locating replication partners. Use as secondary or tertiary only.
|
||||
|
||||
!!! info "Recent Changes"
|
||||
The usage of `127.0.0.1` has been changed to pointing to the actual full IP address of the server itself. I need to research this more to determine where this updated guideline came from. For example, if the DNS server IP was `192.168.3.25` you would set that as the value for the secondary DNS server.
|
||||
|
||||
!!! warning "Do **NOT** Use `127.0.0.1` as Primary DNS Server"
|
||||
When you are setting up domain controllers / DNS servers, you do not want to use the DC itself as the primary. This can cause all sorts of unexpected issues with reliability and replication. Always have another DNS server as the primary, THEN set the 127.0.0.1 localhost as secondary or tertiary.
|
||||
|
||||
|
||||
Reference in New Issue
Block a user