Is it OK to use the public domain name as the internal AD domain name instead of using .local internally


I am taking over a project and the local domain name is; they also have a website at

I have always used domain.local for AD, and am wondering if that is a best practice or is there a reason for not doing so.

Running an nslookup internal for does resolve to the proper IP and the rDNS records are configured correctly.

I would like to start connecting some of the servers and the vCSA through LDAP, and am wondering if this might start causing problems?

Best Answer

our internal domain is a sub-domain of our public domain. we use split dns as well as some of our websites etc which are publicly available are internal and have to resolve to different ip addresses internally as opposed to externally.

you can get away with using your domain internally, as said above. you just have to get your head around the split dns

Related Topic