DNS Resolution

  • Thread starter Thread starter Stefano
  • Start date Start date
S

Stefano

Hy, I have installed a new AD Domain with local DNS, in
trusted LAN, and forwarder DNS for internet name
resolution.
Everythings works fine for WEB navigation.
I have also a Primary DNS Server for internet zone in my
DMZ, with WEB server (in DMZ).
Every time I try to access with internal client to my web
server (www.internetdomain.it), the AD DNS Server resolve
the web server with public address.
The question is: how can I configure (if is possible) the
AD DNS server for internal client that when they digit
the www.internetdomain.com, the AD DNS resolve the name
with the DMZ address?
The firewall is PIX 515 UR
The proxy server is ISA Server 2000.

Thanks in advance for collaboration.
 
Generally you want to run a "shadow" or "split"
DNS (some call it split brain.)

You run the SAME zone externally, as you do internally
internetdomain.com.

The external version only has publicly accessible addresses.
The internal has these AND the internally accessible addresses.
If a machine has multiple addresses then perhaps it will only
be shown internally with the internal address.

Key: It is REALLY two zones -- internal and external -- but
they have the same name and are never replicated automatically.
Generally, all changes to the external zone must be duplicated (or
equivalent) manually on the internal version.
 
Thanks for reply, but the AD DNS Zone name is different
from Internet zone name, infact the AD is adzonename.dom,
while internet zone is internetname.it.
I'd like (I don't know if it's possible) for example to
add a record in AD DNS server zone to resolve only the
internet web server with the DMZ Address.
Any suggestions?
 
S> I'd like (I don't know if it's possible) for example to
S> add a record in AD DNS server zone to resolve only the
S> internet web server with the DMZ Address.

It is. In the server providing the "internal" view of the namespace, create a
"zone" whose apex is the domain name that you wish to publish the internal
data for.
 
Back
Top