How to setup Split DNS on Win2K3

[draco55]

How would I set a "split DNS" scenario using Win2K3? From
what I read so far I would have to create two zones for
the same domain. The zone on the external DMZ network
will only have entries with public addresses for only
those machines that need to be accessible from the
internet. The other zone will be in the internal network
with entries for all the "inside" machines plus entries
with private addresses for those machines located on the
DMZ. My other questions are can the internal zone be AD
integrated? And can I add the external zone on the DMZ as
a forwarder for the internal zone?
Thanks.

 

[minxca]

Hi,

Configure ADIZ for internal DNS and configure forwarder to your ISP DNS, DO NOT forward to your External (DMZ) DNS.
Your External DNS should be configured to resolve your public domain only!

On your external dns, check Disable Recursion, Secure cache againts pollution and delete the entries on Root Hints.

 

[ricpinto]

Read this link first:

http://www.microsoft.com/serviceproviders/whitepapers/split_dns.asp

 

[draco55]

Thank you both for your comments and suggestions.