+ Post New Thread
Results 1 to 6 of 6
Wireless Networks Thread, New AD domain in Technical; We're creating a new network and are having problems deciding on the internal domain name. Should it be the same ...
  1. #1
    badders's Avatar
    Join Date
    Apr 2007
    Thank Post
    Thanked 11 Times in 10 Posts
    Rep Power

    New AD domain

    We're creating a new network and are having problems deciding on the internal domain name. Should it be the same as our .sch.uk (very long!) web address or can it be something a bit shorter?

  2. #2

    matt40k's Avatar
    Join Date
    Jun 2008
    Thank Post
    Thanked 657 Times in 537 Posts
    Rep Power
    Most people use .local. It's more secure as it can't progate onto the internet, still it'll have to be a bad setup to do it anyway. Most people use admin.local or such, it doesn't really matter unless you intend to join your AD with other schools or such.

    You'll have to ask around (here) how you add your .sch.uk so you can use it with exchange (etc), assuming you have it.

  3. Thanks to matt40k from:

    badders (2nd June 2009)

  4. #3
    Diello's Avatar
    Join Date
    Jun 2005
    Kent, England
    Thank Post
    Thanked 228 Times in 128 Posts
    Rep Power
    Use .internal here, as .local is used with Zeroconf/Bonjour etc. - Easier not to use school domain unless your hosting authoritive DNS servers for your domain, which I believe very few, if any, schools do for sch.uk domains. Otherwise you'll get into issues with websites etc.

    We use schoolname.internal here.

    Exchange isn't an issue as AD domain name isn't tied into SMTP domain name.

  5. Thanks to Diello from:

    badders (2nd June 2009)

  6. #4
    rosswilson's Avatar
    Join Date
    Feb 2008
    Thank Post
    Thanked 10 Times in 10 Posts
    Rep Power

    I Agree With Diello

    Yes, I agree with Diello because if you set your internal domain to the same as your externally hosted website you will get problems with accessing the site.

    This is because when an internal client types the website address your local DNS server will believe your trying to access the internal resources. There are ways around this (Google: "Split DNS") but I don't really think it's worth it.

    One thing I have noticed however is that when creating a new AD domain (I did this on Server 2008), make sure the NETBIOS domain name is to your liking as it will appear on Vista and Windows 7 clients logon screen. Although it only displays this name if you havenít setup Group Policy to hide the last logged in username.

    Hope this is of some help when naming your new AD domain.


  7. Thanks to rosswilson from:

    badders (2nd June 2009)

  8. #5

    john's Avatar
    Join Date
    Sep 2005
    Thank Post
    Thanked 1,061 Times in 929 Posts
    Rep Power
    go on you know you want UVHS.INTERNAL

    We have our full domain here (but the .org.uk) version and its a royal PITA when trying to access things like ftp.domain.org.uk as it looks internally so my DNS is littered with external DNS IPs for our webservers and stuff to make them work so it will be renamed hopefully this summer to .internal to stop this problem,.

  9. Thanks to john from:

    badders (2nd June 2009)

  10. #6

    m25man's Avatar
    Join Date
    Oct 2005
    Romford, Essex
    Thank Post
    Thanked 473 Times in 342 Posts
    Rep Power
    All these issues are easily dealt with using split dns.
    Use your ISP's DNS servers as forwarders and create A records for all external hosts on your internal DNS
    If your school is myschool.mylea.sch.uk
    Add records for www.myschool.mylea.sch.uk etc pointing to the external ip address so that you internal hosts know when they need to send packets to the outside world and not be looking around you lan for something that isn't there!

    IMOHO it doesn't make any difference if you use the schools FQDN or .whatever as long as it's not somebody elses!

    I remember visiting a very well known Academy in Sth London that had decided not only to use public ip address range internally but also called it's internal domain BA.COM

    Laugh, I nearly bought my own beer.....

    Another mega mistake is to use a single label internal domain name.
    Mainly because you can't use the Domain Rename tools in 2003/2008 if the AD domain has been setup as a single label domain! You will eventually have to rebuild the AD completely.

    Information about configuring Windows for domains with single-label DNS names

+ Post New Thread

Similar Threads

  1. Domain Name
    By TechSupp in forum *nix
    Replies: 1
    Last Post: 23rd January 2008, 04:58 PM
  2. One Domain or Two?
    By Paid_Peanuts in forum Windows
    Replies: 41
    Last Post: 10th July 2007, 11:03 AM
  3. Replies: 3
    Last Post: 10th April 2007, 09:40 AM
  4. 1 Domain + 1 domain + syncronised users = possible?
    By tarquel in forum Wireless Networks
    Replies: 52
    Last Post: 30th October 2006, 03:08 PM
  5. Replies: 15
    Last Post: 15th September 2006, 10:01 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts