troubleshooting Question

DSN service for Workgroup servers in DMZ

Avatar of CProp
CProp asked on
DNS
1 Comment1 Solution412 ViewsLast Modified:
Hello
I have a question to see if there's a security risk in the way I have DNS configured.
Here's my setup:

Concerning the DNS entries in TCP/IP, would you have any issues with this setup:
I have a couple of Windows 2003 servers (IIS + SQL) sitting on DMZ setup as a workgroup. They communicate with each other with their host files. However, DNS entries in TCP/IP settings are configured as 8.8.8.8 as preferred DNS server and 8.8.4.4 as Alternate.
This is done, so they can get Microsoft updates, virus updates and any other software patch/fix/upgrades that are required.

Internal client accessing  the website (IIS) access it through public IP of website.

Is this setup ok for external name resolution, or should I still configure DNS through network services and configure Forwarders to 8.8.8.8 or my ISP DNS servers?

The two servers do sit behind a firewall.

Thanks in advance for your help.

CP
ASKER CERTIFIED SOLUTION
Matt V

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 1 Comment.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 1 Comment.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros