DNS Architecture
Nicholas S. Corduan
our university. It's been setup this way for longer than
I've been working here, but we're having some issues and
so I thought I would ask for folks' opinions on this
architecture:
We have two sites in our Acitve Directory Domain. Each
site has one global catalog server, which is the primary
DNS for that site. Our larger site also has a couple of
secondary DNS servers for our zone. Each site also has
something we've been calling our, "external DNS," the
only records of which are also for our own zone, but as
the outside world sees them.
Here's the heart of my question: we have internal
machines looking at and internal DNS servers forwarding
to these "external DNS" servers. Are we gaining anything
from that? As near as I can tell, these servers appear
to be our presence in the external DNS name space, and
therefore not of substantial help for internal machines,
but I realize there might be another function of
an "external DNS" that I'm missing.
Any opinions on this architecture? Thanks much,
NickC---
Steve Bruce, mct
you have internet access.
"Nicholas S. Corduan" <NcCo...@tayloru.edu> wrote in message
news:479d01c49fde$c91ddc70$a401...@phx.gbl...
Nicholas S. Corduan
>.
>
Steve Bruce, mct
ways.
1. Using the root hints on each of your dns servers.
2. Forward to the External DNS Servers you referred to.
If you have access to your dns servers and there aren't too many of them,
you could temporarily remove the forwarders, and see if you still have
internet name resolution.
Because of dns caching, test this by accessing sites that have not been
previously accessed. I use bob.com <whatever that is>.
There may be a more sophisticated method to determine if your forwarders are
required, but it may take more time that this low level method.
"Nicholas S. Corduan" <NcCo...@tayloru.edu> wrote in message
news:497701c49fef$1c7f6e50$a401...@phx.gbl...