Current setup: We have a Windows 2000 server which is functioning ok. Logging in is fast. XP Pro clients point to the server as their one and only DNS server. The server forwards any addresses it can't resolve. We want XP Pro clients to be able to access the internet only for web browsing but the server to be isolated as much as possible from the internet for security reasons.
However Ive been requested to configure the XP Pro clients to NOT point to the server as their primary DNS server, the logic being that this frees the server from forwarding DNS requests and might improve security and performance. I have read that pointing clients to the 2000 server as their DNS server is the prefered setup.
Q: How would it be possible to have the clients use the ISP DNS servers instead and still login to the domain quickly?