Is it possible to remove NICs from a domain controller in DNS?

vic

7/4/23, 10:40 PM

I have the following situation and I'm not sure what its implications are.

On a barebone server with 4 network interfaces, I'm running one of two DCs to my domain. Now, in spite of 4 network interfaces being available on this server, I only wish that one of them has any meaning with regards to the domain. But all interfaces are connected to the network and have a valid IP address.

I already made a couple of configurations. For one, I unchecked "Register connection in DNS" for the three interfaces. Also, in the server properties in the DNS manager, I set the property "Listen on only the following IP addresses" and unchecked the ones that should not listen.

Now, in spite of me doing all that, these addresses still keep popping back up in the domain's DomainDnsZones and ForestDnsZones. I can delete them but they just keep coming back. So, when running nslookup mydomain.com, it will show these 3 IP addresses as well.

I tried so many things but failed. Is there anything I can do, apart from disabling the network interfaces entirely, to have them not play a role in the domain?
Am I approaching this maybe in a wrong way? Is there even a reason I should be even worried that those additional IP addresses are present?

0 + 0

active-directory

domain-controller

Virsacer

7/4/23, 11:13 PM

Why are they even configured and connected, when you dont want them? Is NIC Teaming an option for you?

Massimo

7/5/23, 1:24 AM

Multihoming a Domain Controller is *bad*. That said, if you set all interfaces to not register in DNS *and* set the DNS service to not listen on them, this *should* work...

vic

7/6/23, 12:40 AM

@Virsacer the three interfaces are actually each bound to a hyper v switch. I'm not 100% sure but wouldn't the switch lose connection if I disabled them in the host system?

vic

7/6/23, 12:40 AM

@Massimo yes, that's the case

Score:1

Server

Greg Askew

7/5/23, 1:13 AM

You need to add the PublishAddresses registry value

Key: HKLM\SYSTEM\CurrentControlSet\Services\DNS\Parameters
Value: PublishAddresses

https://docs.microsoft.com/en-us/troubleshoot/windows-server/networking/a-record-registered-host-dns

0 + 0

vic

7/6/23, 12:44 AM

Isn't this the same as removing the IP address from the DNS server manager, also mentioned in the linked article under _method 2_?

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Is it possible to remove NICs from a domain controller in DNS?

TH: เป็นไปได้ไหมที่จะลบ NIC ออกจากตัวควบคุมโดเมนใน DNS

RO: Este posibil să eliminați NIC-urile de la un controler de domeniu în DNS?

RU: Можно ли удалить сетевые карты с контроллера домена в DNS?

VI: Có thể xóa NIC khỏi bộ điều khiển miền trong DNS không?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.