If you have Exchange servers on the internal network, you will have a slight additional amount of work to do for the Exchange. This is nothing huge, just a little adjustment for the fact that the Exchange server is not sitting in the same domain that is publicly addressable.
Also, I'm assuming that you will not want your Web server to be part of the internal domain. This is fairly typically as you generally do not want the DMZ machines to have access to internal resources. If you are going to use the DMZ Web server as the DNS server, you will want to make sure that the traffic from the systems is permitted. It may be more secure to have a separate DNS server that is serving the internal customers. But the one in the DMZ will work.
Dig deeper on Microsoft Active Directory
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.