A major reason for having multiple DNS servers for each zone is to allow DNS information from the zone to be available widely and reliably to clients throughout the Internet. Multiple servers spread the name-resolution load and improve the overall efficiency of the system by placing servers nearer to the resolvers.
With multiple servers, usually one server will be the primary DNS server and others will be secondary DNS servers. The distinction between primary and secondary servers is relevant only to the servers for the zone concerned; to the rest of the DNS servers they are simply multiple servers. All are treated equally.
The primary server holds the master copy of the zone file; it is the server where the data is entered into DNS from some source outside the DNS. Secondary servers obtain data for the zone using DNS protocol mechanisms to obtain the zone DNS table from the primary server.
When selecting secondary servers, you should give attention to the various
Listing servers that cannot be reached from large parts of the network causes a particular class of problems. This could be listing the name of a machine that is completely isolated behind a firewall, or just a secondary address on a dual-homed machine that is not accessible from outside. The names of servers listed in DNS records should resolve to addresses that are reachable from the region to which the DNS records are being returned. Including addresses which most of the network cannot reach does not add reliability to the zone.
Barrie Sosinsky (firstname.lastname@example.org)is president of consulting company Sosinsky and Associates (Medfield MA). He has written extensively on a variety of computer topics. His company specializes in custom software (database and Web related), training and technical documentation.
This was first published in January 2001