I have an issue that has been stumping me for the past few days. Lets say we have a website called RobertsStuff.com. This site has CNAME flattening through cloudflare and this is working fine externally. For internal use webmail.robertsstuff.com has an internal A record resolved by Windows DNS, along with rollcall.robertsstuff.com being a CNAME record pointing externally.
This all worked great until the CNAME flattening was added, the issue is that Windows DNS requires we input the A record IP for it to resolve. The new configuration with cloudflare has the A record changing on a semi regular basis.
I thought an easy solution would be to not resolve the robertstuff.com records internally so that cloudflare's recent A records would work. Not a problem since they resolve nothing internal for the regular robertsstuff.com, only the sub domains. Entering the subdomains as forward lookup zones works until we reach the CNAME records where a CNAME is not allowed at the root. So rollcall.robertsstuff.com is not allowed to have a CNAME record.
I'm stuck and cant seem to find a solution other than adding the internal subdomains to the public DNS, which does not sound like a great solution. Any help is greatly appreciated!
