Solved

How to setup External DNS - Correctly

Posted on 2002-06-22
6
120 Views
Last Modified: 2010-04-13
OK-

I need to set up an NS1 and NS2 box for External DNS. (we host our own dns)

Situation- I want them to be behind the firewall and I am going to NAT the traffic through.

I would prefer this not to be an AD intergrated DNS zone. Is this possible to do?

LMK what an "ideal" situation would be...
0
Comment
Question by:atmear
  • 3
  • 3
6 Comments
 
LVL 17

Expert Comment

by:mikecr
ID: 7101694
This is how you should set up DNS for the internet.

http://support.microsoft.com/search/preview.aspx?scid=kb;en-us;Q300202

You don't have to use AD integrated DNS, however, this makes a good failover when used.
0
 

Author Comment

by:atmear
ID: 7105801
Great Document... Thank You

One other Question: I am running a AD domain (i will call it) domain1.com The domain we use on the inside is actually our FQDN on the outside. Knowing that... Currently I have the 2 servers configured as ns1.domain1.com and ns2.domain1.com. I created a primary and secondary and both boxs seem to be working fine (out of production)... As you stated, it would be ideal to have the DNS services integrated into AD. To do so, I would have to step on my current AS structure. So to clarrify and understand what your saying, should I do as follows? Create a new AD forest for example domain2.com and have the server names ns1.domain2.com and ns2.domain2.com? In that suggested scenario, I am creating the enviroment for DNS and active directory to coinside....

Thanks for your help,
ATM
0
 
LVL 17

Expert Comment

by:mikecr
ID: 7107104
If your FQDN is also your regular domain name, I would create one DNS server with a primary zone on it for your company for external use, and I would configure two domain controllers internally with DNS that is AD integrated so you have a backup. This is what you would do in a real world scenario. This also helps to keep your network secure.
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:atmear
ID: 7107930
I am a bit lost...

So are you saying to "not" bring up a new AD domain?
And, just bring up one box attached to my current domain (which has the same FQDN) with the external DNS records?

Not so sure how that would work... so I believe I just do not understand.

Let me clarrify. I want to bring up to external DNS servers behind the firewall. The DNS servers would route traffic to my FQDN along with other FQDN's. But, my actuall AD Domain name is also my FQDN. So should I just Bring up two new servers, put them in ns1.new domain.com.?

MSN-atmear@hotmail.com (If I can not understand what your saying and you would like to have a more detailed realtime conversation)

Thank You!
0
 
LVL 17

Accepted Solution

by:
mikecr earned 100 total points
ID: 7108814
If you already have a domain configured and you have an external DNS server set up, you don't need to create a whole new domain. Just make sure that you have two domain controllers each configured with DNS that is AD integrated and your all set. They can be used for internal name resolution and you can use the external DNS for other things like your mail server and such.
0
 

Author Comment

by:atmear
ID: 7335986
The answer I selected as the "winner" is not exactly the answer to my question... but by reading all of his responses you can determine the correct answer.

Thanks!!
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
What is Backup? Backup software creates one or more copies of the data on your digital devices in case your original data is lost or damaged. Different backup solutions protect different kinds of data and different combinations of devices. For e…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now