Ben Archuleta via FreeIPA-users wrote:
Hello Everybody,
I am currently rolling out a FreeIPA based solution to replace a NIS behind a NAT that’s
deteriorating. As I look at the implementation of FreeIPA I was wondering, is it better to
use the DNS server thats part of FreeIPA or to use Bind. The new NAT doesn’t yet have a
set design so I can implement DNS in whatever form is necessary.
Topology:
NAT: x.my.wonderful.domain
IPA:ipa0.my.wonderful.domian
IPA:ipa1.my.wonderful.domain
Then 250 workstations live behind the NAT.
I don't know that one is better than another. Integrated DNS can make
some things easier like automatically creating and managing the SRV
entries needed for autodiscovery but many users manage DNS outside of IPA.
rob