i've created a new 2008 domain in our test lab. the internet works from another domain in the lab, so connectivity out of the building is not the issue. our security personnel state they are not blocking web traffic in the lab. however, after creating the domain (dns is installed on the DC) i cannot access the internet from either the new DC or member server with the DC pointing to itself, much like normal 2003 domains i've created in the past. i've removed the local firewalls from the servers, so that's not it. however, when i put 220.127.116.11 for dns on the DC (root dns on the web) i can get out to the web. i'm new to 2008, but aren't the root dns servers already configured by default and forwarding by default setup in DNS on a DC? why would i need to set 18.104.22.168 for dns to resolve for the internet?