RE: [ActiveDir] DNS Configuration question

[Rich Milburn]

Personally in that situation I’d forward to my ISP, I wouldn’t want my internal DNS talking to unknown external servers.  But I would go a step further and forward to an external DNS I control, or a DNS daemon on my firewall in a small setup, that way my internal DNS servers don’t talk to anything I can’t control.  So – internal clients point to internal DNS (only), internal DNS forwards to (my) external DNS or a DNS daemon on the firewall, and my external DNS forwards to my ISP or performs root lookups itself if my ISP can’t handle the volume.  Rich   Rich Milburn MCSE, Microsoft MVP - Directory Services Sr Network Analyst, Field Platform Development Applebee's International, Inc. 913-967-2819   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman, Russ Sent: Tuesday, April 27, 2004 11:26 AM To: '[EMAIL PROTECTED]' Subject: [ActiveDir] DNS Configuration question   Do you all forward your Windows 2000 DNS requests to your ISP/bandwidth provider's DNS server for external lookups or do you have the root hints on your internal DNS servers and let them do external lookups themselves? ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This e-mail is confidential, may contain proprietary information of the Cooper Cameron Corporation and its operating Divisions and may be confidential or privileged. This e-mail should be read, copied, disseminated and/or used only by the addressee. If you have received this message in error please delete it, together with any attachments, from your system. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -------APPLEBEE'S INTERNATIONAL, INC. CONFIDENTIALITY NOTICE------- PRIVILEGED / CONFIDENTIAL INFORMATION may be contained in this message or any attachments. This information is strictly confidential and may be subject to attorney-client privilege. This message is intended only for the use of the named addressee. If you are not the intended recipient of this message, unauthorized forwarding, printing, copying, distribution, or using such information is strictly prohibited and may be unlawful. If you have received this in error, you should kindly notify the sender by reply e-mail and immediately destroy this message. Unauthorized interception of this e-mail is a violation of federal criminal law. Applebee's International, Inc. reserves the right to monitor and review the content of all messages sent to and from this e-mail address. Messages sent to or from this e-mail address may be stored on the Applebee's International, Inc. e-mail system.