Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

Windows Server 2016 Intelligent DNS (2)

2025-01-19 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Servers >

Share

Shulou(Shulou.com)06/02 Report--

Windows Server 2016 Intelligent DNS (2)

Our previous article introduced Windows Server 2016 intelligent DNS (1). We introduced in detail the configuration of DNS Policy to achieve region-isolated access under Windows Server 2016, but I encountered a problem in the previous article, that is, after the increase, I found that there was no problem with web.ixmsoft.com access, but all internal parsing in the default Zone failed. After querying data, we need to add a default policy. And the priority is higher than any policy.

For example, if we check policy,

Get-DnsServerQueryResolutionPolicy-ZoneName "ixmsoft.com"

We passed the test internal parsing

From the screenshot above, we can see that the record in DNS is normal, but it cannot access other resolution records in the default area, but it is normal on DC, so it is still a problem with DNS Policy configuration.

So we need to add a higher priority policy. Before adding, we need to delete the first two entries by default and then add them. We first delete the added Policy.

Remove-DnsServerQueryResolutionPolicy-ZoneName "ixmsoft.com"-Name "beijingPolicy"

Remove-DnsServerQueryResolutionPolicy-ZoneName "ixmsoft.com"-Name "usPolicy"

Delete and complete all Policy

When we add a policy, we first add the default policy, and then the other two subnet policies

Add-DnsServerQueryResolutionPolicy-Name DefaultPolicy-Action ALLOW-ZoneScope "ixmsoft.com,1"-FQDN "ne,web.ixmsoft.com"-ZoneName "ixmsoft.com" Add-DnsServerQueryResolutionPolicy-Name "beijingPolicy"-Action ALLOW-ClientSubnet "eq,beijingsubnet"-ZoneScope "beijing,1"-ZoneName "ixmsoft.com" Add-DnsServerQueryResolutionPolicy-Name "usPolicy"-Action ALLOW-ClientSubnet "eq,ussubnet"-ZoneScope "us,1"-ZoneName "ixmsoft.com"

After the increase, we will check

Get-DnsServerQueryResolutionPolicy-ZoneName "ixmsoft.com"

And then we test.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Policy problem intelligence priority that is previous plus one test configuration region region screenshot is in note data or query isolation vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple MariaDB Redmi Shulou Tech Info Xiaomi Apple Shulou Information MySQL Linux macOS NVidia Shulou Technology Microsoft Docker vpn Huawei OPPO Reno MariaDB Redmi Shulou Tech Info Xiaomi Apple Shulou Information MySQL Linux macOS NVidia Shulou Technology Microsoft Docker vpn Huawei OPPO Reno

Share To

Related

Servers

More Servers >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report