DNS help

D

Deric

I am running a Windows 2000 network with two internal DNS
servers hosting our internal domain name (IP addresses
10.1.1.50 and 10.1.1.51). I would like to add another
DNS server to host our external (public) domain name.
The two domain names are different. This new external
DNS server will have a private static IP address
(10.1.1.55), which is NATed by the Firewall to a public
IP address. My question is what DNS settings should I be
using for this external DNS server? Should I use the two
internal DNS servers' IP addresses as the "Preferred DNS
Server" and "Alternate DNS Server" settings for my new
external DNS server or not? Thanks in advance for any
help.
 
H

Herb Martin

You might get it to work but it isn't really recommended
and there are easier and better ways....

Deric said:
I am running a Windows 2000 network with two internal DNS
servers hosting our internal domain name (IP addresses
10.1.1.50 and 10.1.1.51). I would like to add another
DNS server to host our external (public) domain name.
Click to expand...
The two domain names are different. This new external
DNS server will have a private static IP address
(10.1.1.55), which is NATed by the Firewall to a public
Click to expand...

A DNS server for a publicly accessible domain needs a static
address (almost always) so you can register it with the PARENT
zone (i.e., .Com, .Net )

You can fake it with one of the DDNS services but there is
really no point to all this -- host your PUBLIC DNS at a
big time Registrar like Register.Com (I ought to get a commission
from them, I recommend them so often but alas)

$30 bucks a year for the Domain name is really outrageous if
you don't get some MORE SERVICES. Register.Com gives
you high-performance, high-reliability DNS servers with a
workable HTML edit capability that handles almost any task
you will face for small to medium size public DNS.

You likely pay (most of) the $30 bucks per year already and
maybe even your current registrar has something similar.
IP address. My question is what DNS settings should I be
using for this external DNS server? Should I use the two
internal DNS servers' IP addresses as the "Preferred DNS
Server" and "Alternate DNS Server" settings for my new
external DNS server or not? Thanks in advance for any
help.
Click to expand...

Whatever you do about the Public stuff, point your INTERNAL
Clients to the INTERNAL DNS server, then have it search
the Internet (root down recursion) or even forward to your
public DNS (if you build one) or perhaps better, your ISP DNS.
 
K

Kevin D. Goodknecht Sr. [MVP]

In
Deric said:
I am running a Windows 2000 network with two internal DNS
servers hosting our internal domain name (IP addresses
10.1.1.50 and 10.1.1.51). I would like to add another
DNS server to host our external (public) domain name.
The two domain names are different. This new external
DNS server will have a private static IP address
(10.1.1.55), which is NATed by the Firewall to a public
IP address. My question is what DNS settings should I be
using for this external DNS server? Should I use the two
internal DNS servers' IP addresses as the "Preferred DNS
Server" and "Alternate DNS Server" settings for my new
external DNS server or not? Thanks in advance for any
help.
Click to expand...

Your question is kind of unclear, are you asking about on the machines
TCP/IP properties for DNS?
Those settings will make no difference to the DNS server on the machine, you
should use the internal servers for DNS in its TCP/IP properties.
The zones on this server must only have public records in it, there should
be no records with private addresses in any zone this server holds.
Whether or not you allow internal machines to see the records on this DNS
server will depend on where the public sites and servers are hosted, if
those sites and servers are hosted behind your NAT device then no internal
machine should have access to its records.
 
A

Ace Fekay [MVP]

In
posted their urgent concerns said:
I am running a Windows 2000 network with two internal DNS
servers hosting our internal domain name (IP addresses
10.1.1.50 and 10.1.1.51). I would like to add another
DNS server to host our external (public) domain name.
The two domain names are different. This new external
DNS server will have a private static IP address
(10.1.1.55), which is NATed by the Firewall to a public
IP address. My question is what DNS settings should I be
using for this external DNS server? Should I use the two
internal DNS servers' IP addresses as the "Preferred DNS
Server" and "Alternate DNS Server" settings for my new
external DNS server or not? Thanks in advance for any
help.
Click to expand...

You want to host a public DNS server for your domain?

The registrars require two DNS servers. You can fake it out with two IPs on
the server, as some do, but I don't recommend it, as Herb agrees. Either
way, you can only port one port across NAT to one IP internally, so this
won't be a viable option, unless you can get another DNS (friend's? ISP's?)
to be the other host.

As Kevin mentioned, you don't want to host public and private records on the
same box but I believe you're getting another box, so that will be good, but
not sure if you implied you won;t host the AD stuff on it.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

external DNS settings 2
DNS Forwarding Not Work 2
DNS config on 2 DNS servers on same subnet 3
dns problems 8
DNS name resolution slow - the first time... 1
Split DNS resolution 1
New DNS server 4
Internal vs External DNS 3

Top