-----Original Message----- From: David W. McSpadden [mailto:[email protected]] Sent: Monday, November 16, 2009 3:20 PM To: NT System Admin Issues Subject: Re: https and certs issues
<snip> If I drop the lookup zone and just add an A record to my AD will it do the same thing??? </snip> No. Not unless your AD DNS name is imcu.com, and if that were the case we wouldn't have had all this conversation today. If you were to just add the 'board' A record to your 'main' zone used for AD it would resolve to board.whatever.yourdirectoryisnamed. You could always make the imcu.com zone AD integrated, but you still need the imcu.com zone to exist for your ill-advised :-) split DNS to work. Now a question. I just re-read your post and you wrote that you have a 'board.imcu.com' zone to which you added an A record. Is that right? The zone should be 'imcu.com' with an A record for 'board' pointing to the internal ip. On a completely unrelated note, you also wrote that you "forward all DNS requests to the root servers on the internet." I don't know exactly what you mean by this (root servers added as forwarders perhaps?), but you might want to consider using OpenDNS for your forwarders. It's a free level of security that many find useful and convenient. Just a thought. Richard ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
