Solved

DNS Connection Setup Problem

Posted on 2002-03-27
6
178 Views
Last Modified: 2010-08-05
Hi All,

We have recently set-up our company corporate DNS.

Our Domain Name is our <companyname> [Easy choice].
Our internal network is a 198.XXX.XXX.XXX
[Internal Network Addresses].

Unfortunatly, as a result we cannot access our company home page. [www.<companyname>.com].

This is due to the fact that our DNS cannot resolve the name + find its entry which is on a seperate network address: 213.XXX.XXX.XXX.  All client machines have the Internet IP DNS entrys on their machines.

What is the easiest fix to allow the users access to the company home page [www.companyname.com].
1) Rename the Domain to something else ->
[And change 50+ Client Machines]
2) Provide a fix to add to DNS
[Which I require: My prefered fix]
3) Access Company homepage via IP Address
[Not acceptable Solution]
4) Reverse DNS lookup solution ?

Thanks in Advance,

dna.
0
Comment
Question by:danblake
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 11

Accepted Solution

by:
geoffryn earned 50 total points
ID: 6899665
The preferred way to accomplish this is to use a split DNS.  You install DNS on your internal network and populate it with the host names and IP addresses both internal and external.  Then you delete the root zone (.) and set up forwarders.  Modify your DHCP to hand out only the internal DNS server address.  The clients will query the local DNS server and if it does not have the record it will forward to the ISP DNS.  The local DNS will respond with the correct external address for your web site.
0
 
LVL 13

Author Comment

by:danblake
ID: 6899748
Hi Geoffryn,

I am new'ish to (Microsoft)DNS -> What is a split DNS ?

Our population our host names is automatically generated from our DHCP server.

Our external IP address resolutions -> machine names have been added to our existing DNS [I don't think this is a split DNS ? - see diagram of our dns layout at the end of this comment].  Our DNS forwarder has been set-up as the ISP DNS (This is also on client machines as one of their available DNS - should this be removed ?).

We currently have the client machines IP Addresses assigned by our DHCP server [This is set in our 198.XXX -> 198.XXX range].

Could give some further info about the setup of a split-level DNS.

Unfortunatly our DNS looks like:
\ForwardLookupZone
 \CompanyName
  \_msdcs
  \_sites
  \_tcp
  \_udp
\ReverseLookupZone

I am guessing a split-level DNS is:
\ForwardLookupZone
  \.
    \CompanyName
     \All Items
    \ExternalDNSResolutions
     \All Items
\ReverseLookupZone

Regards,

Dan.
0
 
LVL 13

Author Comment

by:danblake
ID: 6899760
Hi Geoffryn,

I am new'ish to (Microsoft)DNS -> What is a split DNS ?

Our population our host names is automatically generated from our DHCP server.

Our external IP address resolutions -> machine names have been added to our existing DNS [I don't think this is a split DNS ? - see diagram of our dns layout at the end of this comment].  Our DNS forwarder has been set-up as the ISP DNS (This is also on client machines as one of their available DNS - should this be removed ?).

We currently have the client machines IP Addresses assigned by our DHCP server [This is set in our 198.XXX -> 198.XXX range].

Could give some further info about the setup of a split-level DNS.

Unfortunatly our DNS looks like:
\ForwardLookupZone
 \CompanyName
  \_msdcs
  \_sites
  \_tcp
  \_udp
\ReverseLookupZone

I am guessing a split-level DNS is:
\ForwardLookupZone
  \.
    \CompanyName
     \All Items
    \ExternalDNSResolutions
     \All Items
\ReverseLookupZone

Regards,

Dan.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 11

Expert Comment

by:geoffryn
ID: 6899779
A split DNS is two different DNS servers, one internal, one external, resolving names differently.  I assume that all of your client recieve external DNS addresses from DHCP?  Are you running AD?  
0
 
LVL 13

Author Comment

by:danblake
ID: 6902007
The external DNS server -> ISP [ADSL].
The internal DNS server -> [CompanyName Domain]
Modify your DHCP to hand out only the internal DNS server address -> This has now been performed.
DNS Addresses from DHCP ? -> Yes.
AD -> Yes.

This now seems to be working.

Hoorah - I can now get direct access to our <CompanyName> website.

Thanks,

Dan.

0
 
LVL 13

Author Comment

by:danblake
ID: 6902008
Thanks for the assistance.
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Ever wonder what it's like to get hit by ransomware? "Tom" gives you all the dirty details first-hand – and conveys the hard lessons his company learned in the aftermath.
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question