Information Technology Reference
In-Depth Information
If there is a problem with the zone transfer, the zone will still be created, and you can
correct the issue and then reinitiate the transfer. (A failed zone transfer looks like Figure 3-7.)
Correct the source of the problem and then reinitiate the transfer by right-clicking the failing
zone and selecting Transfer From Master from the menu.
FIGURE 3-7
The DNS Manager console showing a failed initial zone transfer
EXAM TIP
although not explicitly called out in the objective for this exam, there is one other way to
create a primary or secondary DNS zone: convert an existing zone to a different type. So,
for example, you can convert a file-based primary zone to a secondary zone as long as an-
other primary zone exists. and you can convert a secondary zone to a primary zone as long
as the creation doesn't result in more than one file-based primary zone.
Stub DNS zones are zones that contain only data about a zone's name servers, without
maintaining all the data for the entire zone. Stub zones are a useful way, for example, to
keep track of the currently authoritative servers for a child zone without maintaining the full
records of the child zone. Unlike secondary zones, stub zones contain only the records for the
name servers of the zone. Also, unlike secondary zones, stub zones can be Active Directory-
integrated. Stub zones can be created for both forward and reverse lookup zones.
Stub zones also alleviate a significant security concern about secondary zones. Because
secondary zones contain a full copy of all DNS records in the zone, they provide a poten-
tial attacker with important information that could jeopardize network security. Stub zones
expose only the IP addresses of the designated name servers. Because stub zones use
standard DNS queries to obtain their information, they can be used even when the zone is
marked “Do not transfer.”
