• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 364
  • Last Modified:

using NS servers with different records

Let's say I have a domain called example.com. In that domain I have two NS records: internaldns.example.com and externaldns.example.com. I also have A-records that specify the IP addresses for these servers.

But let's say my Name Server internaldns (which is the 1st NS record) contains the following A records:
database.example.com
files.example.com

Now my other Name Server (externaldns, the 2nd NS record) only contains the following A records:
website.example.com
ftp . example.com

Now when someone would enter the URL 'website.example.com', does it first query my first Name Server (internaldns) and then the other Name Server (externaldns), or does it immediately fail if it can't find the requested name on the first server?
0
RHochstenbach
Asked:
RHochstenbach
1 Solution
 
ittogoCommented:
It would fail on the first dns as name not found.  Both the name servers should have the same hosts listed.  What you can do is have an entry in the external dns that points to the internal address, and if it is a unroutable address, it would not be of much use to external users.  There would be a minor exposure of an external hacker knowing your internal network structure, but it is not enough to worry about.
0
 
RHochstenbachAuthor Commented:
Thanks for you help, I will make sure that the records in both servers are the same.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now