I am setting up a new Active Directory Forest per Microsoft's best practices here by creating a forest root domain the same as my public web site and then creating a subdomain sub.example.com. The problem that I am running in to is public web site name resolution internally.
I've read lots of posts from creating a www record and having users type www in the browser, settings up IIS on the DC, and so forth. The recommendation from Microsoft is to set up forwarding from your internal DNS to an external DNS. Either an external DNS you build yourself or to your ISPs DNS. I have tried adding my ISPs DNS to the forwarder both in the forest root and sub domains, but I am still not able to resolve my web site internally.
What am I missing that will allow this recommended configuration to work?
The recommended configuration option for a mixed internal and external DNS namespace is to make your internal domain a subdomain of your external domain. For example, an organization that has an external namespace domain name of contoso.com might use the internal namespace domain name corp.contoso.com. Using an internal domain that is a subdomain of an external domain. - So your internal Forest/Domain should be an unused subdomain of your public domain name. It should not be the same as your public domain name. – joeqwerty Aug 14 '18 at 02:18