DNSSEC: Sign a DNS Zone with Windows Server

DNSSEC (Domain Name System Security Extensions) is an extension of the DNS protocol that adds security to the DNS protocol by signing the records by a public / private key system. This extension allows the client to verify that the response received is valid and has not been changed by a man-in-the-middle attack. This extension …

Read more



IPAM: IP Address Management with Windows Server – Installation and Configuration

Lancer la découverte des serveurs

Presentation of IPAM IP Address Manager (IPAM) is a feature built into Windows Server that allows you to set up an administrator tool and analyze DHCP scopes and have an IP address base within a computer network. In a server environment where multiple Windows DHCP servers are in use, IPAM provides a single interface to …

Read more



DNS Resolution Based on Client IP Address with Windows Server

DNS Geo

In this tutorial I will explain how to make sure that the DNS resolution with Windows Server is done according to the IP address of the client. There are two solutions that we will see in this article. The first solution to enable network mask sorting is available from Windows 2003 Server. The option is …

Read more



Setting up a read-only domain controller – RODC

Introduction In this article, we are going to have how to set up a read-only domain controller (RODC). This type of controller, as the name suggests, is read-only, so it can not change user attributes or even add objects. There are several implementation scenarios for this type of domain controller, here are two that I …

Read more



DNS: conditional forwarder

DNS query

Presentation of conditional forwarder In this article, I will explain and show you how to set up a conditional forwarder on a Windows DNS server. As a reminder, DNS redirection allows the service to send requests to another DNS service to resolve the request for an unknown zone. A conditional forwarder is used to specify …

Read more



Sophos XG: routing DNS queries

DNS configuration

Presentation of routing DNS queries on Sophos XG The routing of DNS queries is similar to a conditional redirector under Windows, which allows to indicate for a DNS zone the server or servers to contact to resolve a record. This type of routing is useful in the case where your network consists of several private …

Read more



Change the DNS cache duration of DFS Namespaces

In this article, I will explain how to change the DNS cache of a namespace. By default, the DNS cache is 300 seconds or 5 minutes. For example, during a server migration, it may be necessary to reduce the client cache. Change the duration Open the DFS Distributed File System Management console, right-click the name …

Read more



Add a Type A record to a Windows DNS server

A type A record resolves a name of the type xxxx.domain.tld to an IP address. In an Active Directory environment, computers register with the DNS server when they have their IP address given by the DHCP service. In business, this type of registration is often used for setting up web services. If you decide to …

Read more



DNS configuration of a redirector

Presentation When setting up a DNS server on Windows Server, it may be necessary to configure one or more DNS forwarders to public servers to resolve external domain names instead of using root DNS servers. It is possible to use the servers “roots”, the resolution time can be “long”. Configure a DNS forwarder 1. Open …

Read more