Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Is there an issue using .local as the Top Level for a FQDN?

Posted on 2007-11-16
2
Medium Priority
?
293 Views
Last Modified: 2010-08-05
Hi All,

Very simple question, hoping someone can answer nice and quickly.

I was reading a microsoft forum the other day and one of the Microsoft Technicians was advising against using .local as the Top Level Domain.  He said apparently it causes issues in the long run with AD and DNS.  Instead, he advised to use either .internal or .int.

Has anyone ever had any issues with this?  Can't see how this would make any difference but thought i'd throw it out there to ask all you experts and see what you thought.

Cheers,
0
Comment
Question by:ibexsystems
2 Comments
 
LVL 6

Accepted Solution

by:
Nathan P earned 200 total points
ID: 20297018
If you're determined to use a nonstandard TLD in your domain name, avoid the use of .local or .pvt because they aren't reserved. Instead, use one of these reserved top-level domains:

    * .test
    * .example
    * .invalid
    * .localhost

You can find more information about these names in Internet Engineering Task Force (IETF) Request for Comments (RFC) 2606. Remember, if you use these nonstandard DNS names, you can't obtain certificates from a third-party Certificate Authority (CA), which might cause problems for your organization.

And the below from Microsoft themselves, states that .local currently isnt registered on the internet.

Three practical methods to name the DNS domain are:
•      Make the name a private domain name that is used for name resolution on the internal Small Business Server network. This name is usually configured with the first-level domain of .local. At the present time, the .local domain name is not registered on the Internet.
•      Make the name a sub-domain of a publicly registered domain name. For example, if the publicly registered domain name is Contoso.com, a sub-domain of Corp.contoso.com can be used.
•      Make the name the same as a publicly registered domain name.
0
 
LVL 2

Author Closing Comment

by:ibexsystems
ID: 31409516
Fantastic Reply.

Thanks very much LextricX for your very prompt reply.  Well Deserved Points.  Cheers.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Transferring FSMO roles is done when an admin wants to split roles between certain Domain Controllers or the Domain Controller holding the Roles has been forcefully demoted using dcpromo / forceremoval
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

572 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question