Split Brain DNS policy for conditional forwarders?

Jimmy2521 1 Reputation point
2020-10-30T04:56:12.56+00:00

Hi,

I'm testing out DNS policy for split brain DNS and it's working OK except for conditional forwarded requests as they are not being processed by the policy. The way I have this set up is as follows:

I have 2 different domains talking to each other with 2-way trusts, etc. On DC1 (domain A), I have DNS policy set up for split DNS so that requests from subnet A are directed to internal resource, and requests from subnet B are directed to external resource and this works fine.

On DC1 (domain B), I have conditional forwarders set up so when subnet C on domain B makes a request for a zone that lives in DC1 (domain A), the requests are resolved with no issues.

The above is working OK but a new requirement has come up and I need to direct requests from subnet C to point to external resource instead of internal one. So, I created a another policy on DC1 (domain A) to direct requests coming from subnet C on domain B to go to external resource. This doesn't work and I'm not sure if it is possible to get the policies to work in this scenario.

Can anyone please shed some light on this?

Thank you.

Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,039 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Sunny Qi 11,031 Reputation points Microsoft Vendor
    2020-10-30T09:32:24.17+00:00

    Hi,

    Thanks for posting in Q&A platform.

    Before we go further, could you please help to post the Network topology diagram of your whole environment structure? It will help us understand your environment more clearly.

    Please understand, due to the environmental limitation, we have no such environment to test in our lab. It is hard for us to reproduce and analyze this issue from Q&A platform support level.

    If your issue is urgent, I would suggest you open a case with Microsoft where more in-depth investigation can be done so that you would get a more satisfying explanation and solution to this issue.

    Also, in this way , they can have a clear picture about your issue ( requirements ) and your environment by phone communication and live share session.

    You may find phone number for your region accordingly from the link below:

    https://support.microsoft.com/en-us/gp/customer-service-phone-numbers

    Best Regards,
    Sunny

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.