This topic has been archived. It cannot be replied.
-
工作学习 / IT技术讨论 / 求助,有没有做Windows Network Admin的大拿进来看看。偶想把家里的几台机器做成一个小网络,用一台2000 Server做Domain Controller,剩下的XP和2003加入这个Domain。
问题是,我们用Router连接Rogers上网,也就是说Rogers提供DNS,Router提供DHCP。如果2000做Domain Controller的话怎样去配置DNS(没有公网域名)?每个客户机器怎样去配置DNS?
曾经自己设过一次,2003能加入域,但是就是不能登陆域,察看系统日志,就是说找不到Domain Controller。
-hardywang(Hardy);
2005-1-4
{369}
(#2056979@0)
-
my case:1. setup a windows server 2003, instll /configure as: Active Directory, DNS server and DHCP server.
2. DHCP server scope excludes the range of scope of Route's DHCP scope
3. clients configure to use DHCP
-----
sometimes, the clients will receive the ip from route, you can make a reservation in DHCP server.
not sure if it works in win 2000 environment.
-new1(水花);
2005-1-4
{359}
(#2057001@0)
-
DHCP我想还不算麻烦,最多禁掉2000上的DHCP Service,全部从Router上获得。关键是DNS,我依稀记得出错原因是DNS Server不支持写入什么top level domain之类的。客户机器拼命往Rogers的DNS Server发请求。我手工改了每台机器的DNS设置,先指向2000的机器,然后指向Rogers的,依旧,头痛。
-hardywang(Hardy);
2005-1-4
{196}
(#2057005@0)
-
找本MCSE 70-291的书看一下, 我就是按它的例子做的.can your machines ping each other? have you joined the clients to the domain?
-new1(水花);
2005-1-4
{77}
(#2057034@0)
-
互相能够ping,都互相拷贝文件呢。2003能加入,但是加入后就不能用domain user去登陆。
-hardywang(Hardy);
2005-1-4
(#2057047@0)
-
what is the error message? (couldn't find the DC?)
-new1(水花);
2005-1-4
(#2057058@0)
-
yes
-hardywang(Hardy);
2005-1-4
(#2057064@0)
-
my system is expired and I will resetup it this week.I will let you know if I have any tips.
-new1(水花);
2005-1-4
{39}
(#2057078@0)
-
thx
-hardywang(Hardy);
2005-1-4
(#2057079@0)
-
这是一个非常非常简单的问题。Windows networking的初级知识就足够了。按照你最早的想法,用2000做DC,而不是2003
1. 装2000,然后用dcpromo升级到DC。在DC上安装DNS和DHCP
2. 在你的DC的DHCP上,配置地址分配范围,同时指定你的DC的地址为分发的DNS地址。
3. 装你的客户机,IP地址和DNS地址都使用DHCP。然后加入域。
完成。
你的问题:你使用rogers的DNS当然不行,你的客户机登陆域的时候,使用DNS来找DC。rogers的DNS里面当然没有你的DC了。所以你所有的机器都需要使用你的DC为DNS。当你访问internet的时候,DC上的DNS会自动到internet上做地址解析,不需要额外的配置。
-johnnyhatesjazz(Rock and Roll);
2005-1-4
{477}
(#2057091@0)
-
也就是说2000作为DC的话自己的DNS还是指向自己?还是2000的DNS指向Rogers的?
-hardywang(Hardy);
2005-1-4
(#2057101@0)
-
当然是指向自己。
-johnnyhatesjazz(Rock and Roll);
2005-1-4
(#2057109@0)
-
那么2000上面的DNS Server需要什么设置使得能解析internet的domain?
-hardywang(Hardy);
2005-1-4
(#2057117@0)
-
指向自己就行。
-zzbsb(friends);
2005-1-4
(#2057115@0)
-
Router的DNS不会提供你动态update,即便是forward到isp的也不行.域DNS得让支持动态update的dns做.
-fire(汤剂喝得);
2005-1-4
(#2057121@0)
-
have you solved your problem?
-new1(水花);
2005-1-4
{606}
(#2057480@0)
-
谢谢,晚上回家试试看。如果一个网络里面出现两个DHCP(router / DHCP Server)会怎样?
-hardywang(Hardy);
2005-1-4
(#2057527@0)
-
client will receive the ip from any one of the DHCP which responses faster.
-new1(水花);
2005-1-4
(#2057543@0)
-
I have done that. You need to set up a DNS on Windows 2000 server first. Choose AD-integrated mode, it will generate doman node.YOu must choose careful since this domain can not be changed. If you have an internet domain, make a subdomain and point to your Win2K server.
You can use Router DHCP server, but you need to point the DNS to Win2K server address(internal). On Win2K server DNS, set the DNS forwarder to the ISP DNS address.
-cerboros(Once Upon Great King);
2005-1-4
{309}
(#2057513@0)
-
谢谢。似乎DNS Server不是太喜欢单级域名,比如abc,而abc.com就会好一点。我不想让这个domain绑在Internet Domain上,事实上也没有。有什么要注意的地方?
-hardywang(Hardy);
2005-1-4
(#2057530@0)
-
Doing subdomain requires a little bit knowledge. It is not hard, but not easy task.I spent many nights before I finally understand and set up the network. Now my brother in China can use VPN to connect to my home to browse cnn.com.
Win2K structure is very different from NT. Knowing AD and DNS is necessary if you really want to be a pro on windows networking.
There is no domain called abc. abc.com is the top domain. I was talkiing about the subdomian, such as home.abc.com
-cerboros(Once Upon Great King);
2005-1-4
{399}
(#2057550@0)
-
谢谢偶并不想成为网络专家,但是为了装一些东西(在workgroup下不工作),所以必需家里弄个domain出来。
-hardywang(Hardy);
2005-1-4
(#2057556@0)
-
我用DCPromo命令开始安装了AD和DNS,但是当重新启动之后开始配置DNS却被报告Access is denied。我用的是管理员用户登陆的。有提示么?
-hardywang(Hardy);
2005-1-4
(#2057855@0)
-
谢谢,都搞定了。我的2000奇怪,加进取的Admin用户没有权限修改DNS设置,只有Administrator本人可以。
次外,我将2000的DNS指向本身,在DNS Server里做了Forwarder之前也能连到Internet,没有想通。
-hardywang(Hardy);
2005-1-5
{171}
(#2058366@0)