• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 222
  • Last Modified:

Domain and dns over VPN

I have 11 offices that connect through a VPN to a Windows Server 2003 domain controller running Active Directory in our headquarters.

This may be a stupid question for someone who has been running this domain for several years to finally ask but I have all of the computers in the remote offices DNS pointing back to the domain controller. Am I correct in doing this? I was always under the impression I had to in order for them to connect to the domain but the problem is when the internet service is slow in headquarters if affects service in the branch offices because their DNS points to headquarters. Also, if the remote offices are using a lot of bandwidth (streaming video, etc...) and their DNS is pointing back to headquarters are they in fact taking bandwidth away from headquarters? Am I making any sense? Thanks for any light you can shed. I have always been confused by DNS.
0
clifford_m71
Asked:
clifford_m71
  • 2
1 Solution
 
Adam BrownSr Solutions ArchitectCommented:
If you have Domain Controllers in each site, it's usually best to use the site's DC as a DNS server for clients. DNS will use some of your bandwidth, and the time required to send a request to a remote DC will cause latency in DNS lookups. The DNS zone for the domain is the same on all Domain Controllers, as it is replicated automatically if it's AD Integrated.
0
 
Adam BrownSr Solutions ArchitectCommented:
To add, if you don't have a domain controller in the other sites, it is a good idea to point to the Domain Controller in the main site.
0
 
clifford_m71Author Commented:
Should I set up the secondary DNS with the local DNS or leave it blank? The issue then is, being on the VPN, when the main office looses internet service not only is the VPN down at the remote offices but so is the internet?
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now