Router DNS when in Domain

Django x2 · 28 May 2015 at 10:15

Discussion at work:

If you have DNS / AD / DC in a local small domain, should any changes be made to the routers DNS (altered from the ISP, changed to Google DNS, etc).

ChrisD. · 28 May 2015 at 11:01

#Chri5# · 28 May 2015 at 14:59

Off the top of my head, not much should be querying the router for DNS so does it really matter? Anything inside the LAN will be hitting the DC for DNS which will have relevant forwarders.

matthab · 28 May 2015 at 16:09

Ideally you should have the AD as the primary DNS server and maybe your router as the secondary.

This should all be handed out by the DHCP server.

Caged · 28 May 2015 at 19:17

Depends on the network, there is no right or wrong answer.

Personally: Two DNS servers, issue each server to clients in the DHCP offer. Set these DNS servers as the ones used by your firewall so you can use internal hostnames for things like RADIUS servers, LDAP lookups etc. For looking up Internet addresses either add forwarders to your DNS servers or use the root servers.