Dns updating zone serial

One method to accomplish your goal, might be to enable dynamic updates for all your zones, with acls limiting access from the local machine only.

We have two DNS servers, one is the same server as DHCP on Server 2008 and another is a separate Server 2008 installation.

For all name servers to be up to date with current version of your zone, they must have the same SOA serial number.

In order for zone transfer to occur to secondary name servers, an ACL must be configured with the correct IP addresses for AXFR secondary name servers.

The important thing to understand is that DNS SOA serial numbers "wrap around".

Unfortunately, the typical YYYYMMDDXX serial numbers breaks with dynamic updates and I think that it might be better to dispense with that altogether, and use montonically increasing serial numbers and keeping zone files in version control.

