AD DNS Name Space internal sub domain

A

andras

Hello,

We are upgrading from NT4 to 2000 Active Directory.

This is what we have:

About 200 user single site network.

aabbcc - NT4 Netbios Domain Name

aabbcc.com - registered domain
www.aabbcc.com - website
mail.aabbcc.com - mail server

What would be the preferred Active Directory domain naming in this
case?

Internal: aabbcc.com.local
or
Subdomain: aabbcc.aabbcc.com


Thanks,

Andras Kende
http://www.kende.com
 
B

barry

Hello,

We are upgrading from NT4 to 2000 Active Directory.

This is what we have:

About 200 user single site network.

aabbcc - NT4 Netbios Domain Name

aabbcc.com - registered domain
www.aabbcc.com - website
mail.aabbcc.com - mail server

What would be the preferred Active Directory domain naming in this
case?

Internal: aabbcc.com.local
or
Subdomain: aabbcc.aabbcc.com


Thanks,

Andras Kende
http://www.kende.com
Click to expand...

why not aabbcc.com ?
 
S

Simon Geary

I would agree with barry and go for aabbcc.com as well. Your main choice is
going to be between that and aabbcc.local. The main thing to watch out for
when using the same domain name internally and externally is that you have
to create manual records for all external resources on your internal DNS
servers. e.g. mail, www etc.

aabbcc.com.local and aabbcc.aabbcc.com are not a logical choice in this
situation.
 
G

Guest

Simon said:
I would agree with barry and go for aabbcc.com as well. Your main choice is
going to be between that and aabbcc.local. The main thing to watch out for
when using the same domain name internally and externally is that you have
to create manual records for all external resources on your internal DNS
servers. e.g. mail, www etc.

aabbcc.com.local and aabbcc.aabbcc.com are not a logical choice in this
situation.
Click to expand...

Agreed. If you can get a complete list of the DNS entries in your
current public DNS you should replicate all the external resources in
the internal DNS. The one thing I have had troubles with are when the
website uses the root domain for links instead of www.domain.com.
 
S

Simon Geary

AD records would not be exposed in practice as when using the 'split-brain'
DNS configuration you have both internal and external DNS servers. Your
external servers live in the DMZ and host only external records. Internal
DNS lives inside the firewall and host all internal and external records.
The internal DNS is what your PCs and servers use. Exposing SRV records
would only be a problem if you used a publicly available DNS server to host
them.

As to which naming choice is preferred, this really depends on who you talk
to. Even Microsoft seem to be changing their minds over this as the original
advice was always to use different namespaces but I think now most people
would opt for using the same name internally and externally. Both options
will work and there is no right or wrong answer, but I would tend to favour
using the same name just to keep things simple.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

join Windows2000 AD with Windows 2003 subdomain (during upgrade from NT4) 1
AD domain name question 2
Internal and Public Using Same Domain Name 2
Internal External Domain Names 1
internal vs external domain 3
Fallback to NT4 - Clients won't talk to Domain 9
active directory (sub-domain) 8
ADMT and Identical DNS Domain Name 1

Top