[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


DNS - Forwarders for Authorative DNS servers

Posted on 2007-08-06
Medium Priority
Last Modified: 2010-04-07
Hi All,

We have a domain hosted with our ISP (domain.com) which has around 185 subdomains. 2 of these subdomains are hosted on our LAN. Clients on the LAN could not access them, so we created an additional zone in DNS to match, called domain.com and added the two subdomain names as A records. Now all the users on the LAN can access these two subdomains, but not the other 183 because the server now thinks it's responsible for domain.com.

What I'd like to kniw is if there is a way of redirecting requests for the other 183 subdomains back out to the internet by an entry in the domain.com zone or if I will have to manually enter the 183 subdomains to our DNS server?

I've looked into a wildcard A record, but I'm not sure where to point this, and split DNS isn't applicable as we also have the internal domain which isn't the same.

Any suggestions would be greatly appreciated.
Question by:rdswaddi
LVL 29

Expert Comment

by:Jan Springer
ID: 19640527
Why weren't queries for those two subdomains leaving the LAN if you weren't authoritative for them?

Did you run a dig with and without traces?

Author Comment

ID: 19644166
I created a zone for them so the server was authorative, hence they weren't leaving the LAN.

I have solved the problem by creating two zones (1 each) for the 2 subdomains that need to be resolved internally and have pointed them to the internal server or IP necessary.

Thanks for your response.


Accepted Solution

Computer101 earned 0 total points
ID: 20075452
PAQed with points refunded (500)

EE Admin

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I will assume you are running a non-server version of some sort of Windows throughout this article. There are many flavors of Windows since Windows Server 2000 - 2008, XP Home & Pro, Vista Home & Pro, and Windows 7 Starter, Home, Pro, Ultimate, etc.…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Please read the paragraph below before following the instructions in the video — there are important caveats in the paragraph that I did not mention in the video. If your PaperPort 12 or PaperPort 14 is failing to start, or crashing, or hanging, …
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
Suggested Courses

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question