Resolved, finally. AD needs to communicate with client computers. It periodically tries to connect, then it changes the dns to it's own ip address. In network properties, Forwarders tab, added 8.8.8.8. Check box Use root hints. Yay!!!!!