Re: DNS rookie

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

---

• From: Joe <joe@xxxxxxxxxxxxxx>
• Date: Wed, 28 Feb 2007 13:46:42 +0000

---

sjs wrote:

When running the DNS wizard am I promped to enter the IP address of the Firewall? And since the Firewall is getting it's DNS fm the DSL provider is that how all this DNS smoking mirrors work?

Concerning the NIC settings on the server that's doing DNS, should it be pointing it's DNS to the Firewall?

The SBS may use either the firewall or preferably the ISP DNS servers
as *forwarders* only. This is where in the CEICW you are asked for the
ISP DNS servers. You can safely leave it blank, queries will be a little slower but will still work.

The SBS must use *itself* as the only DNS *server*. The ipconfig /all
output for the SBS must show only its own LAN IP address as DNS server.

The workstations must also show *only* the SBS as DNS server. There
must be no alternate servers either for workstations or SBS. The
simplest way to achieve this is to set the workstations to obtain DNS
information automatically as well as IP address, and use the SBS for
DHCP serving. If you use an alternative DHCP server, you need to program
it to provide the SBS LAN IP address as DNS server and WINS server.

The reason for all this is that the SBS can provide DNS information for
Internet destinations, and also for its own workstations. The latter is
essential to network browsing and RDP to workstations, to name just
two of the SBS functions. Other DNS servers can provide Internet DNS
information but cannot possibly know anything about the LAN, and things
will break if they are used.

The only hardware on the whole network which should use external DNS
servers is the Internet router and/or firewall. This has no need of LAN
information, but may need Internet DNS even when the network is shut
down or disconnected.
.

---

• References:
  • Re: DNS rookie
    • From: Jeff Teel

• Prev by Date: Message with invalid sender
• Next by Date: Re: SBS Shared Fax - Client Machine
• Previous by thread: Re: DNS rookie
• Next by thread: Re: DNS rookie
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: DNS While PPTP / IPSec VPN is open ... You have set IPSec VPN between SBS server and a remote hardware firewall, ... DNS While PPTP / IPSec VPN is open ... |> Any machine using SBS services must use only the SBS as DNS server. ... (microsoft.public.windows.server.sbs) RE: OWA fails to Authenticate with AD in SBS 2003 - Failure with O ... the DNS issue. ... SBS internal NIC as the DNS server on the TCP/IP properties on the client ... Microsoft CSS Online Newsgroup Support ... (microsoft.public.windows.server.sbs) Re: DNS Server set to forwarder randomly going out to root servers ... We implemented the EDNS0 change to no avail. ... The firewall is actually acting as a caching DNS server. ... (microsoft.public.windows.server.dns) Re: Can Not Ping By Name ... >>> Make sure there's no firewall packaged with the VPN client. ... >>DNS server is the same physical server as the Exchange, ... > Network problem solving - general advice: ... (microsoft.public.windowsxp.network_web) Re: SBS & Routing ... client's DNS server to our SBS, which it can't even ping. ... would have no DNS at all, at the moment it has internet DNS at least. ... (microsoft.public.windows.server.sbs)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.sbs  > 2007-02