Can you sync two different domains on MS DNS server?

domain-name-system replication

Lets say you are running a domain X, but want your internal DNS server to handle requests for both domain X and domain Y such that if machine1.X resolves to a.b.c.d, that machine1.Y would resolve to the same IP address?

Basically we would like to have a single master set of DNS records, but have a second domain which had all the same records. We're in the midsts of doing a migration, and it would be great if we didn't have to remember to update both sets of domain records all the time.


Solution 1:

I've never tried this myself, but it may be possible to solve your problem using a DNAME record in order to alias an entire domain. In RFC 6672 it is defined thus:

"The DNAME record provides redirection for a subtree of the domain
name tree in the DNS.  That is, all names that end with a particular
suffix are redirected to another part of the DNS."

According to this link it is an option also in Windows DNS:

"What's also nice about this technique in comparison with the 'use the same
zone file' trick, is that it can also be applied on Windows DNS servers.

If you already have your data-filled zone (abc.be), simply create a new
zone (def.be) in DNS Manager.. Then rightclick the zone, and choose
'Other new records...'.

Select the Domain Alias (DNAME) type, and then create the record without
filling in an alias name, but selecting your target zone (abc.be)"

You are not writing if the DNS domain(s) is the base of an AD too, or if it is just a DNS. I have no idea how an AD aliased in this way would respond. As a pure speculation one may also have to add a new UPN for the domain alias in the 'AD Domains and Trusts' tool. Another possibility is of course that the AD might totally freak out when called through its DNS aliased name, even if it has the alternate UPN in place.

Solution 2:

Nope. You can do this either manually (as you fear) or script your DNS additions so that any A or CNAME records get added to both zones.

You could also script something to dump all A and CNAME records from both domains, merge them into a single list, and then push that into both domains. If this is a long project, you may need to do this a few times.

Related

Downgrading Windows Server 2012 R2 to WS 2012
Is "zfs receive" an atomic operation?
How can I defend against a DRDoS exploiting NTP server on an ESXi host?
OK to modify HKLM\Software\Policies and HKCU\SOFTWARE\Policies on a domain?
Daemon dies but upstart thinks it is still running
nginx 301'ing limit_req rate limited requests instead of error page
How to circumvent or alter screen timeout group policy when not on the domain?
NFSv4 through portforward
How to troubleshoot slow performance on AWS EC2/RDS?
How to protect server against brute-forcing of http authentication?
"kernel: Cannot read proc file system: 1 - Operation not permitted" -- millions of such messages each minute in kern.log on OpenVZ VPS? [closed]
Is there a legitimate reason to use an encoded word in any header other than the subject?