Hi
We have the Rolls Royce implementation of InfoBlox devices in our organization. I understand that these devices are supposed to be all singing and all dancing.
My experience has been quite the opposite and with a hefty $ value as well. We have been treated to an upgrade recommendation path of the product and one of the the many items listed was that Microsoft DNS uses BIND ver 4. I have some some significant research online and I have found information that states no Microsoft DNS was never BIND and yet others that state Microsoft DNS is using BIND ver 9.4.1. So does Microsoft use BIND or is this an urban legend?
One of the things I don't like about Infoblox is that it doesn't do Subnet Prioritization automatically. They have "sorting" rules, and these have to be configured for each vlan you have and at times we have had to do it for specific ips on subnets...drives me crazy.
I would like to move to AD-integrated DNS for internal DNS and RODCs with Read Only DNS for DMZ devices(nothing externally accessed via the internet). Then use either Infoblox or a Unix Bind for externally facing devices. We don't have any DNS devices accessed directly from the internet, all these connections come through an external company.
Moving the DNS zone from InfoBlox to AD integrated isn't going to be simple, easy or done in a short period.
Does anyone have any ideas on how to do this with minimal interruption to services? None of my ideas have come close to workable/good.
Thanks for any ideas or suggestions. :)
Cheers