Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [internal-dns]

DNS that is visible within your corporate network and VPN, but which is not visible on the public Internet.

886 questions
10
votes
2 answers

Should our small office have internal DNS servers?

I administer a small office (<50 people). We have always had internal DNS servers in the office. DNS servers are pretty straightforward, but we have run into trouble with them in the past. We have some office resources that are only available in…
Aaron R.
  • 467
  • 1
  • 8
  • 21
10
votes
1 answer

Internal DNS points to internal server, yet site resolves to public site?

We have a website website.test.company.com and in internal DNS (server 2012 r2) it has 10.0.0.21, which is our server address internally. However when we type in www.website.test.company.com it resolves to website.com and shows the live page instead…
Randy Pratt
  • 101
  • 2
10
votes
1 answer

Why can DNS server not resolve any domain ending in .io?

I have two windows domain controllers. 10.10.10.10 Primary ( win 2008 r2 ) 10.10.10.20 Replica ( win 2012 r2 ) The second one is configured as a replica of the first. About once per week, the primary DC will negatively cache most .io…
spuder
  • 1,725
  • 3
  • 26
  • 42
10
votes
4 answers

Private DNS zone that resolves private subdomains, and forwards to public nameserver for existing public subdomains

I have a TLD with a series of subdomains that are public, say *.example.com. I also have a private server which is used as a SVN repository, which I would like to have available at svn.example.com, but only on the private network. Currently I've…
Adam Sharp
  • 251
  • 1
  • 2
  • 10
9
votes
1 answer

What are the practical risks of enabling the unsecure DNS updates on Windows?

What are the practical risks of enabling the unsecure DNS updates on Windows? As far as I found enabling the unsecure DNS updates is a requirement for enabling DHCP Linux clients from registering their names with a FQDN. I do want to know that are…
sorin
  • 8,016
  • 24
  • 79
  • 103
8
votes
3 answers

Bind dnsmasq DNS to just localhost (127.0.0.1)

I would like to ask a question about configuring of dnsmasq DNS server. I know about such configuration option as "listen-address". But even if I set this option to "listen-address=127.0.0.1" dnsmasq still open port on both internal 127.0.0.1:53 and…
D.K.
  • 91
  • 1
  • 1
  • 3
8
votes
3 answers

Enterprise internal URL conventions

developer here... I'd like your IT perspective on this one... I'm building a new internal web app for my company, and starting to think about how it will be deployed. Many of the existing web apps here are linked-to using their server names…
Ben Brandt
  • 183
  • 1
  • 5
8
votes
1 answer

BIND9 forwarders not working. Internal DNS resolves but doesn't forward requests it can't process

I have BIND9 set up with proper recorders for my domain example.com, something.example.com is actually working... When I have my DHCP server pointing at this DNS server I can get to webmin (https://something.example.com:10000) for the server it's…
user29600
  • 419
  • 5
  • 17
  • 30
8
votes
5 answers

Resolving host names to their domain name in an internal BIND domain

I'm setting up a domain on my home network for learning purposes, using BIND on CentOS to act as the name server. I've got the name server up and running as type master for my internal domain (plumbnicoll.family), and can do forward and reverse…
Adam Plumb
  • 183
  • 2
  • 4
7
votes
1 answer

Exposure of hidden-master stealth DNS server on public-facing authoritative slave

In a typical hidden-master DNS network layout, there are basically two components: Hidden master DNS server, may be behind a NAT or firewall, or be totally exposed Slave authoritative non-recursive DNS server(s) Zone files on slave DNS servers…
John Greene
  • 899
  • 10
  • 30
7
votes
5 answers

Windows 10 Always On VPN, Split DNS, NRPT, and how to configure which DNS server is used?

Here's the setup: Windows 10 1803 clients Server 2012R2 RRAS server Always On VPN device tunnel setup per these instructions, with split tunneling. Device VPN only has routes to 1 DC/DNS server, and our configuration manager server, so it can be…
Grant
  • 17,859
  • 14
  • 72
  • 103
7
votes
1 answer

Windows Server 2012 member server reports - there is a time or date difference between your computer and the remote computer

PROBLEM Domain member service reports the following when attempting to RDP from any Windows 10 workstation on the same domain or any Windows client from an external source: Remote Desktop cannot verify the identity of the remote computer because…
scott_lotus
  • 1,079
  • 3
  • 17
  • 29
7
votes
1 answer

Can a local DNS cache be configured to use stale records when upstream fails?

I'm looking for a proxying/caching DNS Linux server, that is able to serve stale (expired) records if it cannot obtain updates from upstream. Bonus points, if it can be configured to use stale record when upstream takes too long, and then update the…
Earwin
  • 173
  • 5
7
votes
1 answer

How should DNS be configured for remote VPN access to a Windows Domain?

Suppose you have a small windows domain configured as follows: domain name is ad.example.com (as per these guidelines) DC1 is at 10.10.10.3 DC2 is at 10.10.10.4 DC1 and DC2 are running the AD-integrated DNS and DHCP Server roles AD DHCP is…
alx9r
  • 1,643
  • 3
  • 17
  • 38
6
votes
1 answer

HAProxy doesn't automatically reload DNS

I've installed HAProxy 1.7.5-2 on a Debian Stretch (9) for a blue/green deployment infrastructure. HAProxy is setup in TCP mode and reloads DNS every 5 seconds but it doesn't. global log 127.0.0.1 local0 warning stats socket…
Kaymaz
  • 241
  • 3
  • 11
1
2
3
59 60