Avatar of CProp
CProp
 asked on

DSN service for Workgroup servers in DMZ

Hello
I have a question to see if there's a security risk in the way I have DNS configured.
Here's my setup:

Concerning the DNS entries in TCP/IP, would you have any issues with this setup:
I have a couple of Windows 2003 servers (IIS + SQL) sitting on DMZ setup as a workgroup. They communicate with each other with their host files. However, DNS entries in TCP/IP settings are configured as 8.8.8.8 as preferred DNS server and 8.8.4.4 as Alternate.
This is done, so they can get Microsoft updates, virus updates and any other software patch/fix/upgrades that are required.

Internal client accessing  the website (IIS) access it through public IP of website.

Is this setup ok for external name resolution, or should I still configure DNS through network services and configure Forwarders to 8.8.8.8 or my ISP DNS servers?

The two servers do sit behind a firewall.

Thanks in advance for your help.

CP
DNS

Avatar of undefined
Last Comment
Matt V

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Matt V

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23