LIBBB
asked on
DNS Conditional forwarders. How to forward some domains externally, some subdomains internally.
I have remote site where users are logged into a windows domain. This site is not part of our main company. Say our main company is Microsoft.
Issue is, I want this remote site's DNS, to forward some DNS requests to our DNS servers for local resolution, and some DNS request on our domain to be resolved on the remote site DNS, which will get forwarded to the root server, AKA external websites.
So, by default I want ALL microsoft.com requests to forward on to our DNS server. However, there are some exceptions to that same domain, that need to resolve on that DNS/root dns servers, for public DNS resolution.
Only catch is our local DNS servers do NOT resolve externally domains at all.
AKA lets say mail.microsoft.com, remote.microsoft.com and login.microsoft.com I want to resolve externally, so those need to stay at the remote site. But ALL other microsoft.com subdomains need to get forwarded to our main company's DNS.
How would I do this on windows server 2003/2008?
Issue is, I want this remote site's DNS, to forward some DNS requests to our DNS servers for local resolution, and some DNS request on our domain to be resolved on the remote site DNS, which will get forwarded to the root server, AKA external websites.
So, by default I want ALL microsoft.com requests to forward on to our DNS server. However, there are some exceptions to that same domain, that need to resolve on that DNS/root dns servers, for public DNS resolution.
Only catch is our local DNS servers do NOT resolve externally domains at all.
AKA lets say mail.microsoft.com, remote.microsoft.com and login.microsoft.com I want to resolve externally, so those need to stay at the remote site. But ALL other microsoft.com subdomains need to get forwarded to our main company's DNS.
How would I do this on windows server 2003/2008?
theruck
setup conditional forwarding on dns servers http://technet.microsoft.com/en-us/library/cc757172%28v=ws.10%29.aspx
ASKER
Thanks. Any idea about the wildcards though? If I setup a forward for microsoft.com, will example.microsoft.com fall under that forward? Or can I setup *.microsoft.com forward?
U cannot add *.domain.com as conditioanal forwarder
However if you add conditional forwarder to microsoft.com, then query to example.microsoft.com will get forwarded to microsoft.com conditional forwarder
However if your forwarding domain is microsoft.com and you trying to resolve webcast.example.microsoft.
If you created contoso.com as dns forwader and corp.contoso.com as dns zone in local dns, then ur all queires like server1.corp.contoso.com will be resolved internally
If you trying to resolve server.contoso.com, queries will get forwarded to conditional forwarder contoso.com
However if you add conditional forwarder to microsoft.com, then query to example.microsoft.com will get forwarded to microsoft.com conditional forwarder
However if your forwarding domain is microsoft.com and you trying to resolve webcast.example.microsoft.
If you created contoso.com as dns forwader and corp.contoso.com as dns zone in local dns, then ur all queires like server1.corp.contoso.com will be resolved internally
If you trying to resolve server.contoso.com, queries will get forwarded to conditional forwarder contoso.com
configure conditional forwarder for microsoft.com and create a forward lookup zone for example.microsoft.com on your internal dns (with @ record to the target IP). this will ensure that example.microsoft.com queries will be routed to @ record IP address and microsoft.com will go to the IP configured in conditional forwarder.
ASKER
Hmm so far I don't know if I've found a solution. Because a good point has been brought up. There are other internal domains that multiple subdomains.
example.corporate.microsof
How would I send domains that end with microsoft.com over to the other DNS server, with multiple subdomains?
example.corporate.microsof
How would I send domains that end with microsoft.com over to the other DNS server, with multiple subdomains?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.