I have been trying to deal with the issue of DNS recursion on my server but it is really getting more complicated than it seems.
I have a 2012 R2 server with IIS and Exchange 2013 installed, along the way, I have my own DNS records through Windows DNS.
On the past several months, I have been getting warnings from my ISP regarding DNS recursion. As a result, I would disable it through Windows DNS which results in internet blockage inside the server. After a while, I would activate it knowing the issue would come back again and it did.
I tried to find a proper solution that doesn't disable something else in the server. Blocking inbound traffic of port UDP 53 would solve the issue but would refrain remote users from accessing Exchange OWA or ECP.
From what I read, there is no clear solution for this problem, what are your thoughts?
Appreciated in advance,