DNS And NAt

  • Thread starter Thread starter compunow
  • Start date Start date
C

compunow

Hello,

I have a windows 2000 server with AD and DNS. The network is using private
Ip addresses 192.168.21.0 behind a Sonicfirewall device. We also connect to
the Internet through an ISP, which also hosts the mail. The problem: if I
configure my internal DNS server as the primary then I cannot access the
Internet using the ISP's DNS servers as secondary's. If I set the ISP DNS
servers as the primary we can access the Internet but the Internal DNS
server will give errors messages in the event viewer and also error messages
in the computers event viewer.

Is there a way to set my internal DNS server to the primary and have it
comunnicate with the ISP's DNS servers for Internet resolution?

Thanks.
(e-mail address removed)
 
In
compunow said:
Hello,

I have a windows 2000 server with AD and DNS. The network is using
private Ip addresses 192.168.21.0 behind a Sonicfirewall device. We
also connect to the Internet through an ISP, which also hosts the
mail. The problem: if I configure my internal DNS server as the
primary then I cannot access the Internet using the ISP's DNS servers
as secondary's. If I set the ISP DNS servers as the primary we can
access the Internet but the Internal DNS server will give errors
messages in the event viewer and also error messages in the computers
event viewer.

Is there a way to set my internal DNS server to the primary and have
it comunnicate with the ISP's DNS servers for Internet resolution?

Thanks.
(e-mail address removed)
Click to expand...

The recommendation is to only have all your internal machines ONLY use your
internal DNS. Setup a Forwarder for efficient Internet resolution. Here's an
article explaining how to configure a Forwarder. If the option is grayed
out, delete the Root zone. The article also explains that.

Here's the article:
http://support.microsoft.com/?id=300202

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
c> if I configure my internal DNS server as the primary then I
c> cannot access the Internet using the ISP's DNS servers as
c> secondary's.

Don't mix and match different proxy DNS servers in this way.

<URL:http://homepages.tesco.net./~J.deBo...nt-all-proxies-must-provide-same-service.html>

These are not "primary" and "secondary", by the way. Those terms
refer to something else entirely in the world of DNS. Microsoft
uses "preferred" and "alternate" because of this. Use the terms
that are there in front of you.

<URL:http://homepages.tesco.net./~J.deBoynePollard/FGA/dns-database-replication.html>

c> Is there a way to set my internal DNS server to the primary
c> and have it comunnicate with the ISP's DNS servers for
c> Internet resolution?

Yes. It's called forwarding. And it's described in the product
documentation.

<URL:http://www.microsoft.com/technet/pr...tserver/sag_DNS_und_Forwarders.asp?frame=true>
 
Back
Top