After a fair bit of tire kicking I have a 2016 Server Primary Domain Controller set up with DNS, DHCP, and NTP up and working correctly.
I configured the Windows NTP Server to point at my national NTP server pool.
.... I have just been looking at my PfSense firewall/router and thinking. Hmmm.... Should my Firewall NTP Server be pointed at the national pool and the Internal PDC be pointed at my Firewall/Router.
-> In my head it seems like it would be betterer to have a layer of indirection such that the PDC doesn't talk to the outside world but I can't think why (just seems like a righter solution).
So what is best practice here?
It is my understanding the MSFT is a lot happier with DNS, DHCP managed on the domain controller with Active Directory but that may not make it right either.
Thanks,
robert
I configured the Windows NTP Server to point at my national NTP server pool.
.... I have just been looking at my PfSense firewall/router and thinking. Hmmm.... Should my Firewall NTP Server be pointed at the national pool and the Internal PDC be pointed at my Firewall/Router.
-> In my head it seems like it would be betterer to have a layer of indirection such that the PDC doesn't talk to the outside world but I can't think why (just seems like a righter solution).
So what is best practice here?
It is my understanding the MSFT is a lot happier with DNS, DHCP managed on the domain controller with Active Directory but that may not make it right either.
Thanks,
robert