This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 16%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
I have a domain abc.local and have xyz.local as another dns zone hosted on all AD integrated servers all domain joined computers can RESOLVE the AD Dns abc.local and also all the other zones, but when a non-domain joined computer is added to the network and is using one of the DCs to resolve it, then they only can resolve the AD Dns i.e abc.local but not the other dns zones. Why? Do i need to configure something different for non-domain joined.
Thank you VickyWang-MSFT
I have found the issue with the Split-tunnel configuration in our VPN which had allowed only abc.local domain and not the rest of them. After allowing it works.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 28.999999999999996%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVW%3C/text%3E%3C/svg%3E)
Hi,
Thank you for posting in our forum.
1.Use nslookup xzy.local to see what results are returned
2.If you cannot get the result back, you can check the permission of xyz.local DNSzone, whether only users in the domain have permission to check.
Hope this information can help you
Best wishes
Vicky
Hi Vicky,
Thanks for your comment.
I have checked the permissions and everyone has proper read access. Another point and maybe most important that I have missed to mention above is the non-domain joined computers connect to our n/w via VPN and in "ipconfig /all" we verified that their system is using our DNS server entries.
They can only nslookup our abc.local and not the other.
Hi,
Thanks for your reply and waiting
ipconfig only reflects the current configuration of the local network card, and does not mean that the DNSserver is still used after contacting the vpn. Under normal circumstances, use the DNS server in the VPN after linking to the VPN
Hope this information can help you
Best wishes
Vicky
Hi,
Just checking in to see if the information provided was helpful.
Please let us know if you would like further assistance.
Best Regards,
Vicky