Solved

DNS Lookup and Website

Posted on 2004-04-16
4
541 Views
Last Modified: 2010-04-13
We have 3 websites that are on our webserver.  2 of the sites can be seen from inside the office, and all 3 can be seen outside the office.  1 of the sites cannot be seen internally.  We're not sure why this 1 site does not pull up inside the office, but can be seen outside.
0
Comment
Question by:RenitlahHelp
4 Comments
 
LVL 22

Assisted Solution

by:Christopher McKay
Christopher McKay earned 50 total points
ID: 10846920
Hi RenitlahHelp,
What are the DNS settings for your website that isn't visible to your internal network?
Do they differ from the IP address you get when you "ping" the site from a computer outside of your network?
I would assume that this difficulty is due to an incorrect pointer for the internal network, or perhaps an entry into the workstation hosts file.

Hope this helps!

:o)

Bartender_1
0
 

Author Comment

by:RenitlahHelp
ID: 10846973
I will have to check these.  When I pull up the site in IIS, I see it 10.x.y.z IP address.  The other two sites that work outside and inside start with 10. as well.  When I ping the site that is not working from internally, it returns a good working response, but when I ping the www. address it fails and points to a different IP address starting with 65.x.y.z

Any thoughts?
0
 

Assisted Solution

by:stcyryn
stcyryn earned 100 total points
ID: 10847237
It could be a bad pointer to the servername hosting the website like Bartender 1 said ... I believe that you need to have a www reference for the website in your dns servers internally.  It seems the link is pointing to the 65.x.y.z address and it needs to point to the 10.x.y.z address.  If you add an entry in your dns for this i would think it would fix it.  And if it does not you can easily delete the record added with no damage.  But when you type in http://www.<website> it will see the entry in the dns cache and point it there.  
0
 
LVL 8

Accepted Solution

by:
RLGSC earned 350 total points
ID: 10849165
RenitlahHelp,

Ok, if your DNS requests produce 10.x.y.z addresses, as the song goes, "Stop Right There". 10.x.y.z addresses are the "Class A" RFC 1918 (and earlier) specified private intranet addresses. They cannot be routed to from outside your intranet (or even, potentially, parts of your intranet). If they are giving the appearance of being reachable from outside, something is proxying for them at the entrance to your internal network.

If so, and two of the sites work (and the third does not), I would check the configuration on that gateway/router/firewall carefully. If the translation is not happening, then one of the configurations is quite possibly missing. The absence of response to PING is not relevant, since the firewall may be set to ignore ICMP requests.

Also check the delegation of the name servers by doing a WHOIS query at your registrar. You may not be checking the correct name server for the outside addresses of all the servers. It is actually quite common for the intranet nameserver to provide (on its own authority, not through delegation from the root of the DNS system) internal addresses for www servers and other assets that are reachable via the intranet. What matters is what the addresses are on the outside. It is also not uncommon, but less frequent, for the corresponding external addresses to be unreachable from inside the intranet (there is not generally a reason for this, but some routing rules have to be verified, and firewalls proxies configured, not to mention cabable of the feature).

I hope that the above is helpful.

- Bob (aka RLGSC)
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Adding Computers to AD groups through an SCCM Task Sequence
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question