> -----Original Message-----
> From: Len Conrad [mailto:[EMAIL PROTECTED]]
> Sent: Friday, October 04, 2002 6:24 PM
> To: NT 2000 Discussions
> Subject: RE: DNS Servers for Win2k
>
>
>
> >I hadn't thought of a scenario where internet-facing name
> servers needed
> >recursion.
>
> sure. I bet it's very common. A DNS is set up, no domains,
> just so the
> org's PC's can access internet. recursion is turned on to
> suppor the
> internal PC's, but because the DNS is accessible from
> interent, recursive
> queries from internet are also honored. This is worse/more
> probable if
> the DNS is delegated with one or more domains, so the DNS is
> visible in
> delegation records.
Other than the smallest orgs, its really best to run split DNS. Even for
small companies, outsourcing public DNS might be the best option.
>
> > We use split DNS with private IP addresses on my LAN. If
> >you're using the same DNS servers to service both internal
> and internet
> >clients, well... I see the issue. BIND probably would probably be the
> >best option, although not a zero-cost one for most Windows networkers
> >(non-trivial training and initial configuration hours).
>
> Learning DNs is still required to set up a W2K machine, so that's no
> different from BIND, unless you consider some monkeys
> clicking on the MMC
> W2K GUI until something happens is sufficient DNS "training". :))
>
True - although, BIND9 can still do one thing I can't figure out how to do
in Win2k DNS: serving multiple zones, depending on the requestors IP
address.
------------------------------------------------------
Roger D. Seielstad - MCSE
Sr. Systems Administrator
Inovis - Formerly Harbinger and Extricity
Atlanta, GA
------
You are subscribed as [email protected]
Archives: http://www.swynk.com/sitesearch/search.asp
To unsubscribe send a blank email to [EMAIL PROTECTED]
