DNS Forwarders

M

Mark Clout

Hello!

Currently, every client in our organization has our 3 active directory
integrated DNS server IP addresses, as well as our external DNS server
address for Internet queries. Each client's setup looks something like:

172.16.1.1
172.16.1.2
172.16.3
199.212.44.230

My question is...would it be better to strip out the 199 IP address and use
Forwarders on the internal DNS servers to point to our external DNS server,
or just leave it as is?

I ask because one of our servers seems to want to use the 199 IP address to
resolve internal queries, which it can't, even though the 199 IP address is
listed last in sequential order.

Thanks for any advice.

Mark
 
L

Lanwench [MVP - Exchange]

Mark said:
Hello!

Currently, every client in our organization has our 3 active directory
integrated DNS server IP addresses, as well as our external DNS server
address for Internet queries. Each client's setup looks something
like:

172.16.1.1
172.16.1.2
172.16.3
199.212.44.230

My question is...would it be better to strip out the 199 IP address
and use Forwarders on the internal DNS servers to point to our
external DNS server, or just leave it as is?
Click to expand...

Get rid of the ISP's DNS server reference in all IP configs, everywhere. All
servers and workstations should specify *only* the internal AD-integrated
DNS server's IP address in their network settings. The AD-integrated DNS
server should be set up with forwarders to your ISP's DNS servers for
external resolution. See
http://support.microsoft.com/default.aspx?scid=kb;en-us;300202 for more
info.
 
K

Kevin D. Goodknecht [MVP]

In
Mark Clout said:
Hello!

Currently, every client in our organization has our 3 active directory
integrated DNS server IP addresses, as well as our external DNS server
address for Internet queries. Each client's setup looks something
like:

172.16.1.1
172.16.1.2
172.16.3
199.212.44.230

My question is...would it be better to strip out the 199 IP address
and use Forwarders on the internal DNS servers to point to our
external DNS server, or just leave it as is?
Click to expand...

Remove the 199 IP and use it as a forwarder, not only is it better, it is
required. Do not use an external DNS on any member of an AD domain in TCP/IP
properties.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

DNS Forwarding Not Work 2
Question on DNS Forwarders 7
DNS forwarders 4
DNS + Forwarders 10
Int & Ext DNS - Forwarders failing 2
Forwarders & Firewall Ports 4
forwarders 3
large amount of DNS errors 6

Top