Mystical_Ice
asked on
Separate DNS zone for different facility - how would i do this?
Hi
Got a question. We have several sites connected via site to site VPNs to our headquarters in a hub and spoke topology.
What we're tryin to do is find a way DNS will resolve to a particular hostname when the VPN tunnel is connected, but when the tunnel is not connected, it will resolve to the public A record.
All remote sites have an on-premise domain controller that handles DNS.
Example:
mail.company.com resolves (internally) to the internal mail server: 192.168.1.50 (for example).
This is good, but when the VPN tunnel at a remote office is down, the clients are still resolving mail.company.com to the internal IP, which will obviously fail since there's no route. What we want is for them to resolve the external DNS, which in this case might be 52.18.29.158 or whatever.
I would have no problem having the users at remote sites permanently access certain A records via the public DNS lookup, but is that possible? Can i have an A record in my internal DNS servers that resolves to a different IP?
Example, at the headquarters location, mail.company.com resolves to the internal IP, but at all other remote locations, mail.company.com resolves to the external IP
Got a question. We have several sites connected via site to site VPNs to our headquarters in a hub and spoke topology.
What we're tryin to do is find a way DNS will resolve to a particular hostname when the VPN tunnel is connected, but when the tunnel is not connected, it will resolve to the public A record.
All remote sites have an on-premise domain controller that handles DNS.
Example:
mail.company.com resolves (internally) to the internal mail server: 192.168.1.50 (for example).
This is good, but when the VPN tunnel at a remote office is down, the clients are still resolving mail.company.com to the internal IP, which will obviously fail since there's no route. What we want is for them to resolve the external DNS, which in this case might be 52.18.29.158 or whatever.
I would have no problem having the users at remote sites permanently access certain A records via the public DNS lookup, but is that possible? Can i have an A record in my internal DNS servers that resolves to a different IP?
Example, at the headquarters location, mail.company.com resolves to the internal IP, but at all other remote locations, mail.company.com resolves to the external IP
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Alan
Options provided