DNS server and ISA server, vital???

[Joe M]

At the moment my network forward all DNS request to the ISP DNS Servers..
using "DNS Forwarders". Would it be a good idea to have my own DNS servers
to replicate with the ISP DNS servers, or is it fine to use the DNS
Forwarders.
If I install my own DNS Servers would it consume a lot of Hard disk space,
and would it be better for the network.
If I have the ISA server with web proxy install, and use DNS forwarder on
the same computer. Is this efficient.
What If I have the ISA server web proxy, and my own DNS Server that
replicates with the ISP DNS servers.
What is the best setup???

 

[Herb Martin]

At the moment my network forward all DNS request to the ISP DNS Servers..

using "DNS Forwarders". Would it be a good idea to have my own DNS servers
to replicate with the ISP DNS servers, or is it fine to use the DNS
Forwarders.

That doesn't even make sense -- Forwarders about resolving the world for
your
users; presumably "syncing with the ISP" is about some zone you would hold
and is unrelated to the other role.

What would you sync? Do you have an external view of your domain that
you publish on the Internet? You typically want keep internal and external
versions of the same zone separated (shadow or split dns).

If I install my own DNS Servers would it consume a lot of Hard disk space,
and would it be better for the network.

Not, unless you have MANY, MANY records or clients who request
resolution.

If I have the ISA server with web proxy install, and use DNS forwarder on
the same computer. Is this efficient.

Do you mean use this AS THE FORWARDER or forward from it to the
ISP's Forwarder?

Both are quite normal

 

[Joe M]

Hi Herb, at the moment my DNS servers are configured to resolves only
internal IP addresses. And forward all ip address
not resolves by the network DNS servers to the ISP DNS Servers. This is the
world internet addresses.
Well soon, I will put on a web server..
Well if the Network browse the internet all the time. How much records would
the DNS store and the typical Hard disk space usage???
I mean, if I have the ISA server proxy and DNS Server running on the same
computer? Is this a good thing to do, and is there any better setup.
Generally what is the most efficient setup for DNS servers and internet name
resolution for someone who has an ISP connection with ISP supplied DNS
Servers. And does not have a T1 link rented.

 

[Herb Martin]

Hi Herb, at the moment my DNS servers are configured to resolves only

internal IP addresses. And forward all ip address
not resolves by the network DNS servers to the ISP DNS Servers. This is the
world internet addresses.
Well soon, I will put on a web server..

You should likely keep your EXTERNAL DNS at your "registrar" (I use
Register.Com for LearnQuick.Com's DNS on the Internet but run Win2003
on the inside.)

Well if the Network browse the internet all the time. How much records would
the DNS store and the typical Hard disk space usage???

Not really very much at all. It isn't worth worrying about on modern
machines.

I mean, if I have the ISA server proxy and DNS Server running on the same
computer? Is this a good thing to do, and is there any better setup.

I do it but ONLY use DNS on the INSIDE on that machine -- again, I have
the external DNS at the registrar (24 x 7, fault tolerant servers, high
bandwidth
backbone presence, etc.)

Generally what is the most efficient setup for DNS servers and internet name
resolution for someone who has an ISP connection with ISP supplied DNS
Servers. And does not have a T1 link rented.

For resolution, if you have only 1 internal DNS server you can just forward
to
the ISP. If you have more than one (or more than a few) you gain a cache
advantage by having all internal servers forward to your ISA (gateway etc.)
and use it's consolidated cache while it forwards to the ISP and uses THAT
consolidated cache (other customers etc.) and better Internet network
presence
(across the WAN.)

For publishing your resources names (holding the public DNS) you are best
served by having your zone at the Registrar (see above), second choice the
ISP, and finally on your gateway or in the DMZ(screened network.)

I even have a publicly accessible DNS server that I DO NOT use, since the
registrar is a so much better choice.

 

[Phillip Windell]

Hi Herb, at the moment my DNS servers are configured to resolves only
internal IP addresses. And forward all ip address
not resolves by the network DNS servers to the ISP DNS Servers.

Yes. This is the right way. Leave it alone. Your DNS Server should
*only* be concerned with your own private network and then use the
Forwaders to pass Internet requests to the ISP's DNS. Just make sure
that all machines within your network (including ISA) use your own
internal DNS for the DNS that is used.

Your "public" presents on the Internet is published by the ISP's DNS
and you don't need to do anything with that. You do not "replicate"
anything,...you do not "sync" anything. There is no direct
relationship between your internal Private network and what happens on
the Internet. Your internal Active Directory Domain Name also has no
direct relationship to whatever your publicly publish Domain Name is
on the Internet.

--

Phillip Windell [CCNA, MVP, MCP]
(e-mail address removed)
WAND-TV (ABC Affiliate)
www.wandtv.com

 

[Michael Johnston [MSFT]]

You DNS setup appears to be fine. DNS storage size is minial. For the specifics go to the winnt\system32\dns directory and take a look. Forwarding to the
ISP is the way to go.

Thank you,
Mike Johnston
Microsoft Network Support

--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from which they originated.