About Oakgrounds

Oakgrounds is a full service business consulting company specializing in Macintosh systems and networks right here in Marin County.

Get Started

Recommended Resources

Oakgrounds is proud to recommend services from the following reputable companies:

Our Services

Get in touch...

Oakgrounds, Inc.
2715 Heatherstone Dr.
San Rafael, CA 94903
415-507-1623

E-Mail

Recommendations

0

Split Horizon DNS Setup

Ideally you want your users to always be able to connect to the myserver.mycompany.com, independent if they are at the office or anywhere else in the world. This is fairly simple with the DNS split horizon setting.

The split horizon trick is to run a local DNS server behind the company's firewall. This is the DNS server LAN local ip address of the server to local LAN machines. (For instance, 192.168.1.200 for any machine on the 192.168.1.x subnet) The machine on the Internet gets your public ip address when it tries to connect to the server (For example, 74.125.224.16).

You will need to switch the the advanced GUI of server administration. In the DNS settings define your primary zone (myserver.mycompany.com). That record is probably already there, courtesy of Apple. You may want to add an A record for the www.mycompany.com ip address and an A record for mail.mycompany.com, pointing to the public IP address. If you have network printers, you would want to add a record like myprinter.mycompany.com pointing to the network printer. Start the DNS server and test to see if you get the correct answers from your DNS server using the 'host' command.

The next step is that the DHCP server you use will only list the private DNS server.  Also check if your server uses itself for DNS queries. Once the local clients renew their IP lease they should be able to resolve myserver.mycompany.com

Added advantages are:

1) If your ISP DNS server is overtasked, your users might see a browsing speed performance increase.

2) An attacher from the outside would not see IP addresses from internal resources.

Last modified on Thursday, 16 December 2010 00:32
Read 23235 times
Social sharing
Ward Bouwman

Ward Bouwman

Latest from Ward Bouwman

More in this category:

« Vacation message does not turn off Joomla OSX 10.6 and LDAP »

Leave a comment

Make sure you enter the (*) required information where indicated.
Basic HTML code is allowed.

Featured 17August2010 Ward Bouwman Blog
(0 votes)
Another quality website built, marketed and maintained by GYST Media.