• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1160
  • Last Modified:

WPAD configured in trusted domain causing issues in our domain

Hi All

We have a Windows 2008R2 domain, we do not have WPAD configured in our own domain, We are a healthcare organisation and we have a 2 way trust with another domain of a seperate healthcare org, we have conditonal forwarding configured for their internal domain name.

They have recently configured WPAD on their domain, this has led to people who use our DNS servers that do not have proxy servers configured being directed to our partners proxy server. This does not effect people who are members of our own domain as they have proxy settings configured by GPO, however we have a large number of doctors practices that are just workgroup members who use our DNS settings as the long term goal is to migrate them to our domain, however in the interim the WPAD setting is causing us some pain.

Is there a way we can stop the WPAD from the trusted domain taking effect, we have the globalqueryblocklist setting enabled and WPAD is in there however this doess not seem to stop it

Any help would be very much appreciated.

Thanks
0
ncomper
Asked:
ncomper
1 Solution
 
footechCommented:
Do you have DHCP telling clients to use the additional domain as a dns suffix?  That's the only way they might be querying for wpad.otherdomain.com that springs to mind.  If so I would ask if that additional suffix is necessary.

I haven't tested this myself but I think you should be able to essentially set up a split DNS to work around this.  Just define a Forward Lookup Zone for wpad.otherdomain.com, but don't put any records in it, all other queries for otherdomain.com should be handled by your conditional forwarder.

The blocklist applies to all zones that the DNS server is authoritative for, but not to queries through forwarders, etc.
0
 
ncomperAuthor Commented:
Excellent thanks, the dummy DNS zone worked for us
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now