Score:0

Configure Windows DNS Server to throw SERVFAIL for certain domain

cn flag

As some sort of background: We are migrating from one IT infrastructure to another, though we cannot get rid of the old infrastructure for the foreseeable time and need to keep access to it - even though mostly read-only. It has to do with some corporate decisions, one part of the becoming it's own legal entity. The two infrastructures must be decoupled from another for that reason.

A practical problem is here that we need to maintain two VPN connections for our OS X and Windows clients, and connecting to the new VPN results in the new Windows Server's DNS service to respond with an unknown domain message (NXDOMAIN) in case a user tries to connect to a site which is related to the old infrastructure. This is expected, but I need to enforce that the secondary DNS server(s) configured on the client machines are tried. Thus I need the Windows server to respond with SERVFAIL for a known domain.

Is it possible to configure Windows Server DNS to respond with SERVFAIL for a certain domain like myoldcompany.intern?

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.