DNS best practice - server placement
Barry Margolin
barmar at alum.mit.edu
Thu Jul 24 17:59:44 UTC 2008
In article <g6af6u$2qvn$1 at sf1.isc.org>,
paleale at sonic.net (Alan Strassberg) wrote:
> What's preferrable -
>
> * An internal DNS server with forwarder statements to an upstream (ISP)
> DNS for Internet resolution, or
>
> * An internal DNS server forwarding to a DMZ DNS server that does
> the upstream query.
>
> Other than performance issues, it the internal + DMZ design "better"
> or is this just adding latency and more points of failure?
>
> What's the best practice architecture for a large corporation?
>
> alan
Is "None of the above" an acceptable answer? What's wrong with
* An internal DNS server that does normal iterative resolution from the
roots.
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
More information about the bind-users
mailing list