Quick question for the DNS elites! Using an Active Directory Domain Controller, I set up a DNS Server. I configured the zones for our local domain fine as local domain queries work perfectly well. However, where I'm running into difficulty are WAN requests. I have the Forwarders set up to my ISP's. I know they work because when I do an "nslookup www.domain.com ISPDNSsvr", it works fine. I've been using the ISP's DNS servers in addition to the local DNS Servers in the DHCP info so it doesn't hold people's work up in the meantime. Obviously this is bad because after awhile people's computers grind to a halt.
There are no errors in the DNS event log, so why aren't the Forwarders working? Is it because of the firewall? I have a Nokia IPSec firewall, and it looks like there aren't any settings. I setup a policy in the CheckPoint software to send DNS queries to the server - Am I missing something?