A zone transfer, we said earlier, comprises many DNS messages sent end-to-end over a TCP connection. Traditional zone transfers put only a single resource record in each DNS message. That’s a waste of space: you need a full header on each DNS message, even though you’re carrying only a single record. It’s like being the only person in a Chevy Suburban. A DNS message can carry many more records.

The Microsoft DNS Server understands a relatively new zone-transfer format that puts as many records as possible into a single DNS message. The resulting “many answers” zone transfer takes less bandwidth because there’s less overhead and less CPU time because less time is spent unmarshaling DNS messages.

The DNS server uses the “many answers” format by default, which is fine if all your slaves can understand it. Older BIND name servers (prior to Version 4.9.4) can’t cope with this format and require the traditional one. Fortunately, you can tell the Microsoft DNS Server to use the traditional method by changing the BindSecondaries Registry value. When set to one, the server sends traditional zone transfers to satisfy ...