Hi Guys,
The have a need to prevent some of our Perimeter Sites DNS Servers from being listed in the DNS zone name server list.
I understand this is probably not best practice but this need has come about because we have VPNs and AD Trusts setup with other companies who’s perimeter sites IP address ranges clashes with our perimeter sites IP address ranges.
As a result when they do a nslookup for our domain it returns all IP addresses of all DNS Servers, half of which are inaccessible. This also means that we have problems trying to validate the AD Trust because if it picks an ip address of a DNS Server it can’t contact it just fails.
If there is a better option also I would be happy to look into it.
Any help would be greatly appreciated.
Already looked into this article
https://technet.microsoft.com/en-us/library/cc749944.aspx#XSLTsection126121120120