@Daniells77: I'm afraid your advice is misleading
What Kobus did is not wrong, even if using other DNS servers may help with other aspects.
Server side, in tern of DNS configuration (thus as you explain, at core/network/DNS) what matters is to have one external DNS (Kobus decided to use ISP's DNS, so far so good) and also 127.0.0.1 (first)
localhost is used here to tell to Zentyal to look at local DNS in order to resolve internal addresses. No need to access local DNS using external IP. local loop (127.0.0.1) works perfectly and is not seen by clients
Client side, general idea is to set Zentyal as DNS server. (here 192.168.0.254)
Regarding
domain IP address, I do not share the approach unless for specific Windows related stuff. setting "domain IP" will, at the end, resolve any name resolving request that is not properly built (i.e. with missing host in the fqdn) into this specific IP.
e.g.
server.com will point to domain IP
Why not but I can't see where this can help to get internet access
@kobus: FW contains rules instead of records. Doesn't really matter but will help reader's understanding
- why do you configure rules "from external to Zentyal" ? Internet access means from internal to... either internet (external) if you are not using proxy or internal to Zentyal if you are using proxy
- not sure 10.0.0.2 is a correct DNS server. rather remove it or move it at the bottom of your DNS servers list (yes rank does matter here)
- in order to debug you can try to:
- access internet from Zentyal server itself. If it doesn't work, access from clients will not work neither
- run nslookup from client to ensure names are resolved: when using transparent proxy, name resolution is on client side (while this is done server side when using explicit proxy)