I've posted about this before, but I am trying to get some additional information. Our company is an ISP and also a Cloud provider, mostly hosted servers. We have 6 public DNS servers, technically Linux BIND that our ISP customers use. Now we use these 6 public DNS servers for almost our entire internal network as well with the exception to our AD domain that is setup for vCenter. Since we are using it for our internal network, all of our internal IP addresses are published with a DNS name. Obviously this is not good. However, Zone Transfers is not enabled, so you can't use that to get a complete list of our DNS entries.
Being that zone transfers is not allowed, what are the real risks of having our internal IP addresses on our public DNS server? I was also told that our internal IPs will not be published to other DNS servers around the world.
Being that zone transfers is not allowed, what are the real risks of having our internal IP addresses on our public DNS server? I was also told that our internal IPs will not be published to other DNS servers around the world.