DNSSEC: Sign a DNS Zone with Windows Server

DNSSEC (Domain Name System Security Extensions) is an extension of the DNS protocol that adds security to the DNS protocol by signing the records by a public / private key system. This extension allows the client to verify that the response received is valid and has not been changed by a man-in-the-middle attack. This extension …

Read more

DNS: conditional forwarder

DNS query

Presentation of conditional forwarder In this article, I will explain and show you how to set up a conditional forwarder on a Windows DNS server. As a reminder, DNS redirection allows the service to send requests to another DNS service to resolve the request for an unknown zone. A conditional forwarder is used to specify …

Read more

Sophos XG: routing DNS queries

DNS configuration

Presentation of routing DNS queries on Sophos XG The routing of DNS queries is similar to a conditional redirector under Windows, which allows to indicate for a DNS zone the server or servers to contact to resolve a record. This type of routing is useful in the case where your network consists of several private …

Read more

Change the DNS cache duration of DFS Namespaces

In this article, I will explain how to change the DNS cache of a namespace. By default, the DNS cache is 300 seconds or 5 minutes. For example, during a server migration, it may be necessary to reduce the client cache. Change the duration Open the DFS Distributed File System Management console, right-click the name …

Read more

Add a Type A record to a Windows DNS server

A type A record resolves a name of the type xxxx.domain.tld to an IP address. In an Active Directory environment, computers register with the DNS server when they have their IP address given by the DHCP service. In business, this type of registration is often used for setting up web services. If you decide to …

Read more