Solved

DNS dose not resolve externally

Posted on 2004-10-05
6
211 Views
Last Modified: 2010-04-10
Hi. I have got a windows 2000 domain controllers and an ISA server acting as the internet gateway. I hve set all my domain clients DNS as the ISA server IP. The situation I am having is that Internet is working OK. But Outlook can not see the mail server to download emails. When I changed the DNS IP in one of the clients to the external ISP one. Outlook is ok. What could be the problem. Thanks
0
Comment
Question by:mostafa67
  • 2
6 Comments
 
LVL 7

Accepted Solution

by:
gnegrota earned 250 total points
ID: 12225333
In your case,ISA server must accting like a DNS "proxy", i.e. forwarding all requests to a DNS servers that can resolv the querry. In effect, a DNS service with only cache and 'forward' it's all that you need.
When ISA is acting like Proxy, this function are working for all requests, but is NOT a DNS service ! Firewalling function permit , with the proper settings, a transparent access to external DNSs. So :
1) Install a DNS service on ISA server and set just FW function (to some external DNSs)
or
2) Use internal DNS (if you have) to resolv addresses
or
3) Use for all clients internal and/or external DNSs.

C.U.
0
 
LVL 16

Expert Comment

by:samccarthy
ID: 12225633
On your domain, all your internal clients should be looking at your internal DNS servers for resolution first.  Your internal DNS servers can then point to the ISA server if their resolution fails.  In that way, you will get internal and external resolution as well as the benefits of caching on the ISA server.  As gnegrota said, you can also install DNS on the ISA server too.

Steve
0
 
LVL 25

Expert Comment

by:Fred Marshall
ID: 12231184
You can have more than one DNS server identified on a client.

So, add external DNS addresses on the clients.

It's simple, it's more robust in case of a failure, etc. etc.
0
 
LVL 16

Expert Comment

by:samccarthy
ID: 12233138
In a well designed network, if one Domain DNS server fails, the failover is another DNS server on the network.   By utilizing them, you get the advantages of the Caching that the servers do for addresses they look up.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Suggested Solutions

Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now