We are in the beginnings of a company merger and have planned to start our Domain Trust. We have point to point VPN tunnel between our ASAs on the Internet, no dedicated circuit yet. When we first set up this tunnel we pointed our Exchange servers at each other so that mail would flow "internally", so mail isn't my problem here. CompanyA has several web based services that non-IT departments are accessing, sharepoint, Citrix, etc. When I put a Conditional DNS forwarder in place those web services that are hosted in the DMZ for CompanyA become unaccessable. This is because instead of the citrix site resolving to the Internet address of 18.104.22.168 it is resolving to the internal DMZ address of 22.214.171.124, that 126.96.36.199 network is not accessable to me in CompanyB, with a Forwarder in place I can not put a seperate DNS Zone in CompanyB. My question is, how can I setup the forwarder so that we can continue the Domain Trust but at the same time have the external resources avaliable to CompanyB.