Sum Wum
asked on
DNS - Deny a single DNS-record on RODC
Hi,
We have a RODC in a remote site. Between our site and this remote site, there is established a VPN tunnel, but with only restricted access.
Because of this restricted access and one single DNS-record that Direct Access uses to see if it's on our local network or outsite, Direct Access doesn't work when users from our primary site connects their computer in our remote site, because it sees this special dns records, that tells it that it's on our local network.
Is it possible to restrict access to this single DNS-record on our remote site or remove it, so when they connect their laptop in our remote site, it will establish an Direct Access connection to our primary network through the internet instead of our VPN tunnel.
We have a RODC in a remote site. Between our site and this remote site, there is established a VPN tunnel, but with only restricted access.
Because of this restricted access and one single DNS-record that Direct Access uses to see if it's on our local network or outsite, Direct Access doesn't work when users from our primary site connects their computer in our remote site, because it sees this special dns records, that tells it that it's on our local network.
Is it possible to restrict access to this single DNS-record on our remote site or remove it, so when they connect their laptop in our remote site, it will establish an Direct Access connection to our primary network through the internet instead of our VPN tunnel.
ASKER
MaheshPM: How do I hide it from other DC's?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Any records if you have in standard primary zone, that can be hide from other DCs
Mahesh