We have a small (only three Domain Controllers) Windows 2000 based Active Directory domain separated by a firewall from the rest of the corporate INTRANET.
This is a Honeywell process control network domain and needs to be separated form the corporate users.
DNS is integrated with Active Directory and they all show up as 'roots'.
I'd like to configure the DNS so that it can use the 'forwarders'.
In other words, if they can not resolve the names (on behalf of their clients), they should forward the request to DNS servers on the corporate network.
However, when I click on the 'Forwarders' tab, it comes back with an error telling me that this feature is not available for the 'root servers' !?
QUESTION: How to configure 'Forwarders' on my small domain ?
Do these DNS servers (AD integrated) need to be 'roots' ?
How to change them not to be 'roots' ?