Re: dns questions
From: Andrew Hodgson (me3_at_privacy.net)
Date: 08/24/04
- Next message: Andrew Hodgson: "Re: dns questions"
- Previous message: Andrew Hodgson: "Re: Can't get DNS right"
- In reply to: Jack Ryan: "dns questions"
- Next in thread: Ace Fekay [MVP]: "Re: dns questions"
- Reply: Ace Fekay [MVP]: "Re: dns questions"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 24 Aug 2004 23:41:04 +0100
On Tue, 24 Aug 2004 08:21:37 -0700, "Jack Ryan"
<anonymous@discussions.microsoft.com> wrote:
>I am making the move from NT to 2003 server and would
>appreciate clarification on a few things:
>My setup will be a 2003 server with dns being handled by
>others(our universities IT department)(seperate from our
>department)
Right, what you need to distinguish between here is the public DNS
(i.e, what people see on the Internet for a simplistic description),
and the private DNS (i.e, your AD DNS server). Furthermore, your uni
DNS servers could be set up to handle DNS forwarding, where for
example, they give out the ip addresses for non-local domains (eg
www.microsoft.com). These are called caching DNS servers.
>If i install dns so as to install AD will any information
>get forwared past my server related to active directory.
>(assuming I "forward" to our universities dns servers) In
>not really understanding how this works I am concerned
>about security. I do not want anything forwarded, but
>internet requests.
That is how it has been designed. The forwarders are used to help
fulfill any requests for data that your local DNS server cannot
provide (usually Internet requests). So take this as an example:
You have an AD domain domain1.com. The DNS server on the DC has a
zone called domain1.com, so any requests from clients for data in this
zone is handled by the content DNS server on the DC. However, if
someone wants to look up www.google.com, your DNS server probably
doesn't know anything about that server, so depending on which
forwarders (if any) you have set up in the options, you can have this
request dealt with by the uni DNS server, which is then past back to
your DNS server, where it is usually cached.
>Also I need advice on naming - we have a registered
>domain, but would like our lan to be completely seperate -
> will this cause problems? are there pro's or con's? I
>will not be implementaing a mail server as that is also
>handled by the universities IT department. But, I would
>like to add another web server - do the doimain names
>have to be the same?
The domain names do not have to be the same - indeed, quite a lot of
the MS provided documentation makes reference to them not being the
same (i.e, company.com is company.local in AD). I, however, do not
like this approach for various reasons, but it mainly stems to
problems with running an Exchange server in the .local domain, your
web server shouldn't be effected by this.
Andrew.
-- Andrew Hodgson in Bromyard, Herefordshire, UK. My Email: use <andrew at hodgsonfamily dot org>.
- Next message: Andrew Hodgson: "Re: dns questions"
- Previous message: Andrew Hodgson: "Re: Can't get DNS right"
- In reply to: Jack Ryan: "dns questions"
- Next in thread: Ace Fekay [MVP]: "Re: dns questions"
- Reply: Ace Fekay [MVP]: "Re: dns questions"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
