On Mon, Nov 16, 2009 at 11:38, Ben Scott <[email protected]> wrote: > On Mon, Nov 16, 2009 at 12:44 PM, Don Ely <[email protected]> wrote: >> Two words... Split DNS > > Claiming authority for a DNS zone you're not delegated -- which is > what "split DNS" means -- is a bad idea unless you *really* need it, > and I don't think the OP does. Split DNS is also a source of > headaches confusion for many people. I recommend avoiding it when > possible. And it's almost always possible to avoid it, if you make > the right decisions up front. > > -- Ben
I don't think what you mean by split DNS means what other people mean. I use "mycompany.com" both internally and externally, but use split DNS, with static entries in AD for our externally hosted web site - www.mycompany.com - and others, including our Sonicwall SSL VPN. It's really very simple, if your ISP hosts your external DNS or your firewall hosts your DNS - or in some what you have an external-facing DNS that isn't part of your AD infrastructure. It just takes some static entries. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
