Link to home
Start Free TrialLog in
Avatar of CProp

asked on

DSN service for Workgroup servers in DMZ

I have a question to see if there's a security risk in the way I have DNS configured.
Here's my setup:

Concerning the DNS entries in TCP/IP, would you have any issues with this setup:
I have a couple of Windows 2003 servers (IIS + SQL) sitting on DMZ setup as a workgroup. They communicate with each other with their host files. However, DNS entries in TCP/IP settings are configured as as preferred DNS server and as Alternate.
This is done, so they can get Microsoft updates, virus updates and any other software patch/fix/upgrades that are required.

Internal client accessing  the website (IIS) access it through public IP of website.

Is this setup ok for external name resolution, or should I still configure DNS through network services and configure Forwarders to or my ISP DNS servers?

The two servers do sit behind a firewall.

Thanks in advance for your help.

Avatar of Matt V
Matt V
Flag of Canada image

Link to home
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial