I have been forced to create a split DNS config as my edge router does not support NAT reflection. However I cannot get the split DNS working correctly for client workstations.
internal domain mydomain.local
external domain mydomain.com
host mail.mydomain.com resolves externally and is port forwarded to mail.mydomain.local
internal clients need mail.mydomain.com to resolve to private IP of mail.mydomain.local
DHCP is setup to configure clients with only local DNS servers
on internal DNS(s) I have created forward lookup zone for mydomain.com and added A record for mail.mydomain.com with private IP
(I have also tried creating zone for mail.mydomain.com and creating blank A record with private IP of local host)
Internal DNS are configured to forward unresolved to google DNS
In both cases if I ping mail.mydomain.com from the DNS server it correctly resolves to the private IP address, if I ping from an workstation it resolves to public IP address rather than the private IP Address.
Yes - I have cleared cache on WS with ipconfig /flushdns, I have even cleared the DNS server chache
an nslookup of mail.mydomain.com on a WS returns the public IP as a nonauth response from the local DNS Server
This problem is plauging me at multiple sites, there must be something I am missing.
Help greatly appreciated.