DNS - Deny a single DNS-record on RODC
Posted on 2013-11-26
We have a RODC in a remote site. Between our site and this remote site, there is established a VPN tunnel, but with only restricted access.
Because of this restricted access and one single DNS-record that Direct Access uses to see if it's on our local network or outsite, Direct Access doesn't work when users from our primary site connects their computer in our remote site, because it sees this special dns records, that tells it that it's on our local network.
Is it possible to restrict access to this single DNS-record on our remote site or remove it, so when they connect their laptop in our remote site, it will establish an Direct Access connection to our primary network through the internet instead of our VPN tunnel.