Mon, Jun 29 2009 19:08
How to flip your SBS 2008 to forwarders
The Official SBS Blog : Cannot resolve names in certain top level domains like .co.uk.:
DNS Service seems to hang in SBS2008:
When you set up SBS 2008 one of the defaults it takes is root hints, but as you can see by some of those threads, in some DNS locales, DNS via root hints on Win2k8 is not a robust as it should/could be. So besides those suggested settings, some have recommended going back to forwarders. Now the idea here is not just any ol' forwarders but consider "cleaner" ones. If you have a client that is looking for a bit of management of their sites .... or ... in my case I also put my Dad behind this, OpenDNS.com as a dns fowarder will not only work for residential folks like my Dad but also server networks as well. Some have said that some of their sites and urls don't work behind opendns.com. I'd recommend you test first.
But the process is relatively straightforward...
Click on Start, Administrative Tools, DNS, click on the UAC prompt (and if you aren't clicking on it, it's because you've made it to silently elevate and not shut off completely right?)
Now right mouse click on the name of the server, and click on the forwarders tab. Click on edit and enter in the following values:
The process looks like this in SBS 2008:
Click on edit
In that area click and enter in the OpenDNS values
After each entry hit enter for the values to "resolve"
Huh, interesting, one isn't resolving today....
When you are done, click OK. The Server now is connecting via forwarders.
You aren't done yet. Now set up an account on opendns.com and add your IP address (it's best if it's a static IP) to your settings area. Click on Networks and add the static IP of the network. Then click on Settings and choose those areas you want to block. When you have a dyanamic IP you may need to install software to hook the dynamic IP to the OpenDNS network. From this setting screen if I hear of a bad url or network that I want to proactively block, I just enter it into the "Always block" settings.
Some of you may do similar to this with your managed firewalls and control access from that.
But bottom line if you want to flip your server to DNS forwarders, that's how you do that (you just substitute the IP addresses of your ISP if that's what you prefer), if you want to forward to opendns, that's the exact info how to do it.
Filed under: News