DNS Sinkhole/Alternative

I have been discussing this with a couple of my colleagues and decided to shoot this question over to the TechNet forums to see if someone has run into this same situation. We are currently trying to setup a DNS sinkhole to ensure that any outside source that attempts to spoof our domain for malicious purpose is stopped. However, the issue we are running to is that in order to create a sinkhole for every variation of our company's name would require hundreds of internal DNS zones to ensure that all variations are rerouted internally. This would be one heck of an undertaking and would take a long time to accomplish.

Does anyone know if there is an alternate way of doing this within Windows DNS aside from creating hundreds of zones? or maybe the recommendation of a 3rd party product that would accomplish the same goal?

As always thank you for any assistance and recommendations.

Emm

July 7th, 2015 2:11pm

See this blog, it can give you a few cues to set up similar servers with Windows DNS server Technical Preview (Preview is available for trial):

http://blogs.technet.com/b/networking/archive/2015/05/18/applying-filters-on-dns-queries-using-windows-dns-server-policies.aspx

Alternatively mail to windns-users@lists.cloudapp.net  and we can discuss your scenario in detail.

Free Windows Admin Tool Kit Click here and download it now
July 8th, 2015 2:26am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics