Active Directory - Identical Forward Lookup Zones

Question

If my FQDN is ad.domain.com . Can i create a new forward lookup zone named domain.com to create subdomains like www. or mail. ? Or would that basically destroy my AD because the DNS Server tries to resolve ad. as a subdomain to the lookup zone domain.com ?

score 3 · Accepted Answer · answered Dec 26 '16 at 17:38

3

ad.domain.com and domain.com aren't identical forward lookup zones. What's more, ad.domain.com wouldn't be a sub-domain of domain.com unless it were actually configured/created as a sub-domain of domain.com.

So, no this won't break your AD DNS.

answered Dec 26 '16 at 17:38

joeqwerty

108,377
6
80
171

Thanks! Do i have to configure a delegation in domain.com pointing to ad.domain.com ? – Rikuto Dec 27 '16 at 09:21

score 2 · Answer 2 · answered Dec 26 '16 at 14:22

2

Actually you can. That kind of arrangement is known as Split DNS.

https://en.wikipedia.org/wiki/Split-horizon_DNS

answered Dec 26 '16 at 14:22

Felipe Martinez Pineda

124
6

Active Directory - Identical Forward Lookup Zones

2 Answers2