We have the following setup:
dc01.our.domain 10.10.10.101
dc02.our.domain 10.10.10.102
phpipam.our.domain 10.10.10.250
We need all our hosts to use our DC's as the primary and secondary DNS servers, mainly for AD integration. However all other DNS records we want to store in PHPIPAM. PHPIPAM is set up and integrated with powerdns, so that as we build host records in PHPIPAM the powerdns database gets populated.
I want to set up DNS forwarding in our domain controllers to use powerdns if a record is not found.
I also want the SOA and NS records to be the same on powerdns and windows dns, is this possible?
After testing I found its not working very well. And I think its because the Windows server's are authoritative over the our.domain domain. So if a record is not found there it stops and returns NXDOMAIN without forwarding to PHPIPAM / Powerdns.
I did create a new domain on powerdns called test.lab and built an A record in there. Now when I query nslookup testhost.test.lab 10.10.10.101 I get the record I expected, so forwarding works.
Mainly the ask for same domains across all DNS servers was because users don't want to have to remember two different domains to lookup systems / know which records are on which domains.
Maybe there is a different solution, but I cant think of one without making a different domain on powerdns and doing a full FQDN query to one of our DC's for the non-authoritative domain.
Any recommendations?
