Best Practice: DNS and VPN (with private network IPs) [closed]

Solution 1:

Solution 1 is the correct solution. If uses are connecting over VPN, all traffic including DNS should be running over the VPN. The VPN should be pushing one or more DNS server addresses.

You should not be providing either .local or private IP addresses over the Internet. Solution 4 is broken, as would be solution 3.

If you have distributed offices, using VPN to interconnect them, then use a DNS server in each site. In this case you are likely to have DHCP running on each site, and it should be providing the DNS server addresses.

Most browsers will cache DNS names for a period of time. You can also install a name server caching daemon on Linux which will cache addresses.

If it is your sites that are pulling from so many hosts that load times are excessively slow, then you may want to look as simplifying your sites. Normally, a page would load from 1 to 3 sites, excluding add content. It is possible to proxy content through servers as well to limit the number of DNS lookups required.

Where is the "Compare" option in Excel (to compare two files)?

What is the modern way to get emulated 3D on headphones in a video game (PC)?

PowerPoint automatically change to bold one of the numbering in a list that contains bold font

WSL2, Android Studio and Intel HAXM

How can I remove an entry from the list of installed software? [duplicate]

How to understand SAN stores data at the block level, while NAS accesses data as files?

Arial font sometimes not rendering correctly in Google Docs (same account, same browser, same font, two documents)

How to enable VMX?

Dockerfile: clone repo with passwordless private key. Errors: "authentication agent" or "read_passphrase: can't open /dev/tty"

Is there a solution to the zip/cpgz cycle after downloading from Dropbox to Mac?

Initiate scan from Fujitsu ix500 to Linux over USB

md5sum on large files