Windows Server 2003 for 64-Bit Extended Systems
cancel
Showing results for 
Search instead for 
Did you mean: 

AD Design using xxx.com or xxx.local is best?

SOLVED
Go to solution

AD Design using xxx.com or xxx.local is best?

Hi,

I much need help my company to design the AD.

My company will have host own E-Mail Server soon by using MS Exchange Server 2007 Std. (Only one Server deploy in the DMZ zone, it is mean that no edge Server on DMZ)

And the E-Mail Server have a public Domain Name, like xxxx.com

And our LAN have over 40 PC.

Now I am wonder the LAN AD Design part.

Using xxxx.com or xxxx.local is best? (Where the xxxx is same as the Public DNS we apply already)

Reason is why and on the future, if my company have more money, the E-Mail Server maybe have the Edge Server add to the DMZ and the old server will change to place in the LAN ...

So, I am feeling a bit confused on MS Exchange, since I am new on it, if using xxxx.local, how it service the Public user, if later place it in the LAN?

Thank you.
2 REPLIES
Rune J. Winje
Honored Contributor
Solution

Re: AD Design using xxx.com or xxx.local is best?

This is a huge subject and I recommend further training before impementation/deployment.

For security reasons it is recommended to have a different (.local .internal) type domain name that is different from the public .com one Then you also have to setup something called "split dns".

Search for webcasts on DNS here:
http://msevents.microsoft.com/cui/default.aspx?culture=en-US
Also possible to register for virtual labs etc, etc.

With respect to putting Exchange in DMZ I advise against it. The modern way is to have an ISA2006 firewall/proxy/OLAnywhere "publishing point" between the internet and your internal company network. On the Inside you then have your Exchange server(s) and Domain controllers and clients - without the risk of all the open ports that a DMZ solution gives.

http://www.microsoft.com/technet/isa/2006/deployment/exchange.mspx
http://www.msexchange.org/tutorials/Publishing-Exchange-2007-OWA-ISA-Server-2006.html


Cheers,
Rune

Re: AD Design using xxx.com or xxx.local is best?

Rune Winje,

Thank you of your useful inform.

I am plan deploy two forest, so the Internet and E-Mail will using different DC ...