During a domain migration I had to update the DNS servers for all computers on the domain. Our domain has hundreds of computers, o on different subnets – many subnets have a DHCP server that supplies addresses for machines created dynamically.
The new DNS servers were on a special subnet dedicated to authentication protocols Kerberos, LDAP, ADFS and DNS. We could not just maintain the existing IP addresses for the DNS servers.
We ran it using our management tool on every machine in our data center.
- Changes the DNS settings given out by the DHCP server (this line fails silently if the server is not the DHCP server),
- Changes the Ethernet interface’s DNS settings,
- It should run on servers Windows 2003 and above, so could be applied elsewhere.
- Disables IPv6 tunnel interfaces. Ok, while this was not strictly necessary to the project, it made the ipconfig command much cleaner.
echo off
:: New DNS Servers
set DNS1=10.13.100.101
set DNS2=10.13.100.102
:: Disable IPv6 Tunnels we don't use:
netsh interface teredo set state disabled
netsh int ipv6 isatap set state disabled
netsh int ipv6 6to4 set state disabled
:: Change the DNS Servers that DHCP Gives out.:
netsh Dhcp Server \\localhost set optionvalue 6 IPADDRESS %DNS1% %DNS2%
:: Change Primary and Secondary DNS for all Enabled Interfaces
:: Found this on the Internet!
for /f "tokens=1,2,3*" %%i in ('netsh int show interface') do (
if %%i equ Enabled (
echo Changing "%%l" : %DNS1% + %DNS2%
netsh int ipv4 set dns name="%%l" static %DNS1% primary validate=no
netsh int ipv4 add dns name="%%l" %DNS2% index=2 validate=no
)
)
ipconfig /flushdns
:EOF