We are running 2 Windows 2008 R2 DCs in our network (for the sake of this our domain is corp.foobar.com). We then run a query for www.google.com. When we look at our DNS debug logs we see queries for
www.google.com.corp.foobar.com
www.google.com.foobar.com
www.google.com
We see queries to our 2 internal DCs/DNS servers and then the queries go out to the Internet for resolution. I understand why this is happening. What I need help figuring out is how to keep the queries for "www.google.com.corp.foobar.com" and "www.google.com.foobar.com" from ever going out of our network. What I would like to do is set up some type of rules that says anything that goes to "corp.foobar.com" or "foobar.com" only goes to the internal DNS servers (and then never goes to the root hints) and everything else goes to our ISPs DNS servers.
Any help/explanation would be greatly appreciated.
Thanks.