I have had some time to spend reviewing and checking my domain health and would like some input and or recommendations on my DNS configuration.
Here is my current setup:
DC01 - PDC (2008 R2) with DNS/DHCP configured
DC02 - GC (2008 R2) with DNS
MS01 - Member Server with DNS (2003 R2)
Soon I will be migrating the MS01 over to 2008 R2 and making it a GCs with DNS.
Right now based on research I did at the time, I have configured the primary ethernet card on DC01 to use the DC02 server as primary DNS and alternate of itself (DC01)
On DC02, the primary DNS server is DC01, and secondary is DC02
In the DNS configuration on DC01, I have forwarders setup to external DNS (which I think I should not have).
With that being said, we access internet traffic from a Sonicwall Firewall and NOT through DNS lookups from DC01 or DC02 (or MS01) only local traffic/DNS lookups. So we use and configure the Sonicwall for ALL external traffic and the Domain Controllers for local DNS.
I get mixed opinions on how to properly configure DNS, and forwarders. Reviewing it now, it seems that the primary DNS should be the local DC and the alternate the secondary and that I should not need ANY forwarders in DNS (server).
There is way to much conflict on how it should be configured and since I do not have my DC's resolve external addresses then I think that I do not need any forwarders configured??
Thanks in advance for your help.