Good morning, all!

I'm working on a new project for my company.  Management has asked me to update the DNS structure from a BIND only to a Windows master and BIND secondary topology.  I'm running into several issues that may complicate the project.

First, we host all our own name servers and have split horizons on all of the domains.  The primary domains - let's call them domain1.com and domain2.com, - have 95% of the network traffic between them.  There are several other .com domains hosted along with their brethren in .net, .org, .info and so on.  We want mail destined to these domains to be accepted by the primary domain1.com servers.  We also have several of these servers in both domain1.com and domain2.com NATed through a firewall to provide Internet access.

My Windows DCs are 2008R2 - I see that Server 2016 is expected to have some split-brain capabilities, but I can't wait for that release to get this overhauled.

My first idea was to have domain1.net be the internal DNS domain and domain1.com be the external view, but management insists this won't work and will cause major trouble down the way. 

I guess the first question is what guidance would there be for handling a single domain with mixed NATed and non-NATed hosts? 

Thanks very much for looking!  I would be happy to elaborate on the infrastructure as needed.

G

Start here

http://blogs.technet.com/b/networking/archive/2015/05/12/split-brain-dns-deployment-using-windows-dns-server-policies.aspx

(Some older articles are in windowsitpro.com)

M.

Hi G,

>>We want mail destined to these domains to be accepted by the primary domain1.com servers.

I'm afraid I could not understand the goal you want to achieve. It would help to find a solution if you could make an example to explain it.

Best Regars,

Leo