Sign up to access this lesson
Click here to sign up and get access to this lesson!

Saving Progress...
Understanding the Terminology
- What is meant by a Server that is Authoritative?
A DNS server that is authoritative is one that owns the A, CNAME, PTR records. For example. None of the DNS servers on the internet contain the original records for serveracademy.com except the DNS server SADC01. These other servers may know about serveracademy.com but those other servers are NOT authoritative for serveracademy.com
- What is Recursive DNS? Recursive DNS is the opposite of standard DNS which is an authoritative DNS service which allows others to find your domain while recursive DNS allows you to resolve other people’s domains.
- What is a Recursive Resolver? Recursive name servers are the middlemen between authoritative servers and end users, because they have to recurse or perform the same sequence of operations up the DNS tree until they reach the name servers that own (or are authoritative) for those domain records.
- What is a DNS forwarder? A DNS forwarder is a DNS server that is used to forward DNS queries for external DNS names to DNS servers outside that Network. If the local DNS server can’t resolve the query, that DNS server forwards that request to a DNS server that can resolve the query which improves the efficiency of name resolution.
- What is the function of the Root Hints file? – Windows Servers that have the DNS server Role installed come with a file called Root Hints. This file lists 13 servers that are located out on the internet. This file will allow you to resolve any internet name as long as you have an internet connection.
- Should I use my ISP DNS as my forwarder, or should I use Root Hints?
It is recommended to use your ISP DNS as your forwarder. Performance will be better as there will be less hops than trying to resolve queries from servers halfway across the world.
DNS Policy Scenarios
Here is a list of five possible scenarios. Policies can be configured for the following Scenarios. At work you may encounter several of these situations. You can configure policies that will enable you to meet these challenges.
- Application High Availability – DNS clients are directed to systems that are likely to operate without failure for a long period of time
- Geo-Location based Traffic Management – DNS clients are directed to the closest resource based upon the location of the client and the resource.
- Network Location - Split Brain DNS Is used when two zones are created for the same domain. One to be used by the internal network and one to be used by the external network usually the internet.
- Block a Malicious Zone – You can create filter which is a policy to block a malicious DNS zone.
- Time of Day Based Redirection You can create a policy that distributes application traffic based upon the time of day.
New DNS Objects for Windows Server 2016
- Client Subnet – A client subnet is an object that represents an IPv4 or IPv6 subnet. You use the powershell command add-DnsServerClientSubnet to create a client subnet.
- Zone Scopes – A zone scope is a method of partitioning a DNS zone. You can have multiple zone scopes within a DNS zone. For example, you could have one zone scope for internal clients and another zone scope that would be for external clients that access the internet. A zone scope can contain its own set of resource records that represent the DNS clients based upon the clients IP subnet.Use the Powershell command Add-DnsServerZoneScope to define the zone scope.
Sign up to access the rest of this lesson
You must either log in or sign up to access this lesson.
CURRICULUM
Course Introduction • 10min
0 / 2 lessons complete
Instructor and Course Introduction
Video | 7 min
What's New in Windows Server 2016 DNS
Free lesson
Video | 3 min
DNS Basics • 56min
0 / 8 lessons complete
What is DNS
Video | 3 min
Installing the DNS Windows Server Role
Video | 6 min
Building DNS Server Quiz
Quiz | 10 Questions
The Hosts File
Video | 4 min
DNS Console Overview
Video | 7 min
Recursive and Iterative Queries
Video | 8 min
DNS Basics LAB
Video | 10 min
DNS Basics Quiz
Quiz | 8 Questions
DNS Resource Records • 45min
0 / 5 lessons complete
DNS Resource Record Types
Video | 3 min
Creating the mytestzone Forward Lookup Zone
Text | 2 min
Creating DNS Resource Records
Video | 4 min
Creating DNS Resource Records Lab
Lab | 30 min
DNS Resource Records Quiz
Quiz | 7 Questions
DNS Zones • 4hr 11min
0 / 12 lessons complete
DNS Zones
Video | 4 min
Creating a Forward and Reverse Lookup Zone
Video | 5 min
Creating a Secondary Zones
Video | 9 min
Stub Zone Creation
Video | 11 min
Active Directory Zone Replication
Video | 12 min
Implementing DNS Forwarding
Video | 8 min
Implementing Conditional DNS Forwarding
Video | 7 min
Forward and Reverse Zone Creation Lab
Lab | 60 min
Creating a Secondary Zone Lab
Lab | 30 min
Conditional Forwarding Lab
Lab | 60 min
Creating a Stub Zone Lab
Lab | 30 min
DNS Zones Quiz
Quiz | 15 Questions
DNS Delegation • 50min
0 / 4 lessons complete
Domain Name System and DNS Delegation
Video | 7 min
Windows 2016 Server and DNS Zone Delegation
Video | 8 min
DNS Delegation Lab
Lab | 30 min
QUIZ - Domain Name System and DNS Delegation
Quiz | 5 Questions
DNS Security Techniques • 36min
0 / 5 lessons complete
DNS Security Techniques Overview
Video | 9 min
Configuring DNS Cache Locking
Video | 5 min
Configuring DNS Socket Pools
Video | 6 min
Configuring Response Rate Limiting
Video | 8 min
DNS Security Techniques Quiz
Quiz | 8 Questions
Advanced DNS Topics • 22min
0 / 5 lessons complete
Overview of Advanced Topics
Video | 1 min
Enabling Round Robin and Netmask Ordering
Video | 5 min
Configuring Recursion
Video | 4 min
IPV4 and IPV6 Root HInts
Video | 6 min
Advanced DNS Topics Quiz
Quiz | 6 Questions
DNS Security (DNSSEC) • 1hr 16min
0 / 6 lessons complete
Windows DNS Security Overview
Video | 7 min
Symmetric vs Asymmetric Encryption
Video | 5 min
Installing DNSSEC on Windows 2016 Server
Video | 12 min
DNSSEC Client Install
Video | 7 min
DNSSEC (DNS Security Lab)
Lab | 30 min
DNSSEC Quiz
Quiz | 15 Questions
DNS Policies • 55min
0 / 6 lessons complete
DNS Policies Background Information
Video | 8 min
Configuring DNS Filtering
Video | 7 min
Configuring Split Brain DNS in an Active Directory Environment
Video | 12 min
Configuring DNS Selective Recursion Policy
Video | 7 min
Configuring a Traffic Management Policy
Video | 11 min
DNS Policies Quiz
Quiz | 10 Questions
PowerShell for DNS • 1hr 27min
0 / 6 lessons complete
PowerShell for DNS Part 1
Video | 2 min
PowerShell for DNS Part 2
Video | 5 min
PowerShell for DNS Part 3
Video | 10 min
PowerShell for DNS Part 4
Video | 5 min
PowerShell for DNS LAB
Lab | 60 min
Powershell for DNS Quiz
Quiz | 5 Questions
Troubleshooting DNS Issues - Troubleshooting Tools • 1hr 39min
0 / 8 lessons complete
Troubleshooting Tools Every IT Pro Must Know
Video | 9 min
The Events Viewer Overview
Video | 6 min
Subscriptions
Video | 9 min
Monitoring and Debug Logging
Video | 9 min
Trouble-Shooting DNS Client Issues
Video | 4 min
Troubleshooting Subscriptions Lab
Lab | 30 min
DNS Troubleshooting Lab
Lab | 30 min
DNS Troubleshooting Quiz
Quiz | 2 Questions