CProp
asked on
DSN service for Workgroup servers in DMZ
Hello
I have a question to see if there's a security risk in the way I have DNS configured.
Here's my setup:
Concerning the DNS entries in TCP/IP, would you have any issues with this setup:
I have a couple of Windows 2003 servers (IIS + SQL) sitting on DMZ setup as a workgroup. They communicate with each other with their host files. However, DNS entries in TCP/IP settings are configured as 8.8.8.8 as preferred DNS server and 8.8.4.4 as Alternate.
This is done, so they can get Microsoft updates, virus updates and any other software patch/fix/upgrades that are required.
Internal client accessing the website (IIS) access it through public IP of website.
Is this setup ok for external name resolution, or should I still configure DNS through network services and configure Forwarders to 8.8.8.8 or my ISP DNS servers?
The two servers do sit behind a firewall.
Thanks in advance for your help.
CP
I have a question to see if there's a security risk in the way I have DNS configured.
Here's my setup:
Concerning the DNS entries in TCP/IP, would you have any issues with this setup:
I have a couple of Windows 2003 servers (IIS + SQL) sitting on DMZ setup as a workgroup. They communicate with each other with their host files. However, DNS entries in TCP/IP settings are configured as 8.8.8.8 as preferred DNS server and 8.8.4.4 as Alternate.
This is done, so they can get Microsoft updates, virus updates and any other software patch/fix/upgrades that are required.
Internal client accessing the website (IIS) access it through public IP of website.
Is this setup ok for external name resolution, or should I still configure DNS through network services and configure Forwarders to 8.8.8.8 or my ISP DNS servers?
The two servers do sit behind a firewall.
Thanks in advance for your help.
CP
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.