Question : Changing to correct/recommend DNS setup

Current Setup

All DNS servers show this setup and all Zones in all domains are Active Directory - Integrated Primary

_msdcs.domain.local
      dc
      domains
      gc
      pdc
cle.domain.local
      _msdcs
      _sites
      _tcp
      _udp
      domaindnszones
cin.domain.local
      _msdcs
      _sites
      _tcp
      _udp
      domaindnszones
domain.local
      _sites
      _tcp
      _udp
      cin
      cle
      domaindnszones
      forestdnszones

I think this setup is incorrect and it should be setup like this.

On the DNS server for domain.local

_msdcs.domain.local      -      Active Directory - Integrated Primary (replicate only within domain)
      dc
      domains
      gc
      pdc
cin.domain.local      -      Secondary
      _msdcs
      _sites
      _tcp
      _udp
      domaindnszones
cle.domain.local      -      Secondary
      _msdcs
      _sites
      _tcp
      _udp
      domaindnszones
domain.local            -      Active Directory - Integrated Primary (replicate only within domain)
      _sites
      _tcp
      _udp
      cin            -      Delegation to Child Server
      cle            -      Delegation to Child Server
      domaindnszones
      forestdnszones

On DNS server for cle.domain.local servers

_msdcs.domain.local      -      Secondary
      dc
      domains
      gc
      pdc
cin.domain.local      -      Secondary
      _msdcs
      _sites
      _tcp
      _udp
      domaindnszones
cle.domain.local      -      Active Directory - Integrated Primary (replicate only within domain)
      _msdcs
      _sites
      _tcp
      _udp
      domaindnszones
domain.local            -      Secondary
      _sites
      _tcp
      _udp
      cin
      cle
      domaindnszones
      forestdnszones

Does this seem correct? That only the zone for the particular domain is AD Integrated? Please let me know if my thinking is correct on this.

Also, I was doing some testing and it appears that if I change a zone (on a child domain dns server for example) from AD Integrated Primary to Secondary it will replicate a deletion of that zone to all the DNS servers in the forest. So, along those lines, what issues should I look out for when converting our DNS implementation to the correct seutp?

Answer : Changing to correct/recommend DNS setup

There's really no reason not to leave all the zones as AD integrated. With integrated zones the dns info is stored in AD versus in a local file...all dns replication is part of your standard AD replication; versus the primary/secondary zone single-master method of zone transfers (sometimes problematic =). There are several benefits to using AD integrated zones and your current setup is definitely not incorrect.

The one caveat being that only domain controllers running DNS can host the integrated zones. If you have DNS running on any member servers then you'd need to use Standard Secondary zones on them...with one of the Active Directory integrated primary servers acting as the master.

Random Solutions

Some clients have problem connect to our FTP site

Remap network drives after powing down lap top

Yahoo Messenger

mapping a network drive on port 81 with WebDAV

Internet load balancing between two ISPs

554 sorry, refused mailfrom because return MX does not exist

Some DHCP clients not getting renewed, 1003 errors

AD replication fails after DC system state restore

DNS Zones query