Child Domain DC behind Firewall

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I got a little problem, I'm in the process of moving our DC behind a
firewall. And I've disabled DDNS on the DC in order for it not to update the
external DNS with it's private ip. Although the record keeps disappearing
from the DNS every 3 weeks or so. Is there a way to force it not to become
stale, or a way to have DDNS enabled but have it provide the external Public
IP to the DNS server for registration.
 
kevinsharp69 said:
I got a little problem, I'm in the process of moving our DC behind a
firewall. And I've disabled DDNS on the DC in order for it not to update the
external DNS with it's private ip.
Click to expand...

You should not do that. DCs require Dynamic
DNS for the domain to function correctly.

You should instead separate the DC from the
EXTERNAL DNS -- they should not communicate
directly.

If you are using the same zone name externally and
internally they should be setup as "Shadow DNS"
which is really two DIFFERENT zones that happen
to have the same name (they don't replicate).

Since each will have it's own Primary the external
can be NON-dynamic and the internal will allow
the dynamic updates.
 
Back
Top