Huh? You add it to DNS servers, not DCs. Not all DCs are DNS Servers and vice versa. Also, you can add it from the same DNS snap-in. IIRC, it should see all DNS servers in your org.
Definitely do not add it to the DNS server settings on the NIC of any of your DC's, you'll begin having troubles. On Wed, Sep 15, 2010 at 2:06 PM, John Aldrich <[email protected]>wrote: > Thanks. I added ClearCloud as the first and second forwarders on one of my > DCs. I then proceeded to test it out and voila! It worked. :-) I'm going to > have to go add that to the second DC. :-) > > > > > -----Original Message----- > From: Paul Hutchings [mailto:[email protected]] > Sent: Wednesday, September 15, 2010 2:03 PM > To: NT System Admin Issues > Subject: RE: #*&$&% "Security Tools" Malware > > Pretty much. > > Your internal clients should always point to your DC's (if they don't > things > will stop working and you'll have a very bad day), your DC's then would > have > the ClearCloud DNS servers set as their forwarders. > > Looks an interesting and very useful service if the intention is "pure" DNS > other than blocking malware sites and no advertising every time you mistype > a URL etc. > > -----Original Message----- > From: John Aldrich [mailto:[email protected]] > Sent: 15 September 2010 18:59 > To: NT System Admin Issues > Subject: RE: #*&$&% "Security Tools" Malware > > So I would replace the ISP's DNS servers in my DCs with ClearCloud's DNS > servers, and continue to let the client machines contact the DCs for DNS, > right? > > > > > -----Original Message----- > From: Paul Hutchings [mailto:[email protected]] > Sent: Wednesday, September 15, 2010 1:52 PM > To: NT System Admin Issues > Subject: RE: #*&$&% "Security Tools" Malware > > Woah don't do that. You want your AD DNS so that clients point to your > domain controllers/AD DNS servers and your DNS servers either use Sunbelt > as > forwarders, or root hints. > > Alex, ignoring the IP addresses are those boxes on anycast or something? > > -----Original Message----- > From: John Aldrich [mailto:[email protected]] > Sent: 15 September 2010 18:49 > To: NT System Admin Issues > Subject: RE: #*&$&% "Security Tools" Malware > > Cool... Can I add that as an alternative to my ISP's DNS in my Active > Directory, or should I just push that out through DHCP? > > > > From: Alex Eckelberry [mailto:[email protected]] > Sent: Wednesday, September 15, 2010 12:58 PM > To: NT System Admin Issues > Subject: RE: #*&$&% "Security Tools" Malware > > Btw, we update the malware URLs of these rogues right into ClearCloud. > > Feel free to and the ClearCloud DNS server as a replacement to your > existing > DNS: > > http://clearclouddns.com/ > > It's still beta, but I think you'll find it works quite well. And it's > free. > > > Alex > > > > From: Alex Eckelberry [mailto:[email protected]] > Sent: Wednesday, September 15, 2010 12:55 PM > To: NT System Admin Issues > Subject: RE: #*&$&% "Security Tools" Malware > > http://vipre.malwarebytes.org/ > > Free. And the combination really works. > > From: John Hornbuckle [mailto:[email protected]] > Sent: Wednesday, September 15, 2010 12:20 PM > To: NT System Admin Issues > Subject: #*&$&% "Security Tools" Malware > > The "Security Tools" malware is about to drive me insane. My users keep > managing to infect themselves with it, and we're having trouble stopping > it. > > They don't run with admin rights, so there's no real damage done to their > systems and we can clean it up in about two minutes. But the time adds up, > and I'm tired of my technicians having to waste time on it. > > Our antimalware software is Microsoft's Forefront Client Security, and it's > having a tough time catching this. Every time I get infected, I send the > EXE > to Microsoft and they update their definitions-but the EXE's used by the > malware apparently change rapidly, and seem to constantly be a step ahead > of > FCS's definitions. > > I can think of a couple of options that I know would stop it, like blocking > all EXE's at our web filter or using group policy to limit the running of > EXE's-but this would also prevent users from doing things like installing > safe plug-ins from websites, so it's not a first resort. > > Suggestions? > > > > John Hornbuckle > MIS Department > Taylor County School District > www.taylor.k12.fl.us > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > NOTICE: Florida has a broad public records law. Most written communications > to or from this entity are public records that will be disclosed to the > public and the media upon request. E-mail communications may be subject to > public disclosure. > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > -- > MIRA Ltd > > Watling Street, Nuneaton, Warwickshire, CV10 0TU, England > Registered in England and Wales No. 402570 > VAT Registration GB 114 5409 96 > > The contents of this e-mail are confidential and are solely for the use of > the intended recipient. If you receive this e-mail in error, please delete > it and notify us either by e-mail, telephone or fax. You should not copy, > forward or otherwise disclose the content of the e-mail as this is > prohibited. > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
