How to configure a DNS server to see a company webpage
Hello Everyone:
My company has a webpage stored on one of the servers in our network. Anyone from the outside can view the page just fine, however you cant reach the page from inside our network. We have internet access etc. I know I have to configure the zones in DNS but how do I configure this for the webpage server on the DNS server??
I appreciate any help you could give me on the subject.
Web page server name SIGMA
Internal IP 192.168.1.12
Thanks
My company has a webpage stored on one of the servers in our network. Anyone from the outside can view the page just fine, however you cant reach the page from inside our network. We have internet access etc. I know I have to configure the zones in DNS but how do I configure this for the webpage server on the DNS server??
I appreciate any help you could give me on the subject.
Web page server name SIGMA
Internal IP 192.168.1.12
Thanks
ASKER
JammyPak:
We are running Windows 2000 server. DNS is properly configured on this server. All workstations use the internal DNS for name resolution. I am familiar with configuring zones BUT I have never configured a zone for a website that is found on an internal server.
When I double click on the forward lookup zone I see my domain. I right click this and then select the menu option of
"new host". I then get a dialog box which asks for a Name(uses parent domain if blank), then IP address, and then time to live value. Dont I have to put down the web site URL here someplace? When I just try to put the web server name it does nothing. Everyone has internet access and can surf just fine. Only our web page is not viewable from the internal network.
Any suggestions?
Thanks
Mike
We are running Windows 2000 server. DNS is properly configured on this server. All workstations use the internal DNS for name resolution. I am familiar with configuring zones BUT I have never configured a zone for a website that is found on an internal server.
When I double click on the forward lookup zone I see my domain. I right click this and then select the menu option of
"new host". I then get a dialog box which asks for a Name(uses parent domain if blank), then IP address, and then time to live value. Dont I have to put down the web site URL here someplace? When I just try to put the web server name it does nothing. Everyone has internet access and can surf just fine. Only our web page is not viewable from the internal network.
Any suggestions?
Thanks
Mike
Mike the url is something used by the web browser, not the DNS.
If the name of the server is ourweb in the dns then the url would be just that http://ourweb or even http://internal_ip_address
If the name of the server is ourweb in the dns then the url would be just that http://ourweb or even http://internal_ip_address
ASKER
Keith:
So how do I type the info in? Under the "name" heading in the new host dialog box do I type the name of the web server? or do I type www.something?? I tried typing the name of our server "SIGMA" and I put down it's IP address but I still cant reach our website when I type www.domainname.com . I can go to any other website on the web without any problem.
I dont know if this information is pertinent but we use Kerio web mail and Kerio firewall on a machine that is our internet gateway and web server. I configured the routing protocols on the firewall correctly for machines like the Terminal server (RDP/3389). Should I configure something for the email server? Right now our web site is accessible for anyone outside the office. Do I need to set up a traffic policy of some sort for our internal users to visit the web site?
Thank
Mike
So how do I type the info in? Under the "name" heading in the new host dialog box do I type the name of the web server? or do I type www.something?? I tried typing the name of our server "SIGMA" and I put down it's IP address but I still cant reach our website when I type www.domainname.com . I can go to any other website on the web without any problem.
I dont know if this information is pertinent but we use Kerio web mail and Kerio firewall on a machine that is our internet gateway and web server. I configured the routing protocols on the firewall correctly for machines like the Terminal server (RDP/3389). Should I configure something for the email server? Right now our web site is accessible for anyone outside the office. Do I need to set up a traffic policy of some sort for our internal users to visit the web site?
Thank
Mike
OK. lets forget for a moment that it is even a web server.
Is the server actually on your windows domain?
If yes, lets assume you created it as a windows 2000/2003 server called ourweb. If so, then the server will already be registered in your DNS. There will be an A record or host record in your dns forward zone called ourweb with an IP address associated with it. the IP address will be your internal network IP. Do you have that already?
Is the server actually on your windows domain?
If yes, lets assume you created it as a windows 2000/2003 server called ourweb. If so, then the server will already be registered in your DNS. There will be an A record or host record in your dns forward zone called ourweb with an IP address associated with it. the IP address will be your internal network IP. Do you have that already?
ASKER
Yes Keith
ASKER
Correction.....The Sigma server is on the domain and is registered with DNS. There is no web address on the forward lookup zone.
Sorry, didn't read your last post corectly.
now I understand. What is the internal IP address of the box hosting your web site?
What name do you want to use?
Let assume you want to call it ourweb and its IP address is 192.168.0.1
In your servers DNS, go into the local zone
create an A record or Hhost record and leave the suffix blank.
in the name just put ourweb and in the ip address put the internal ip address.
close the dns
In a cmd box, type in nslookup ourweb and it should return the IP address you entered.
open a web browser
type in http://ourweb. Do you see the web page?
If yes, great.
If no, are you using a proxy server within IE? If yes, check that the exceptions section in the proxy settings includes 192.168.*
(remember 192.168.x.y is just my example)
now I understand. What is the internal IP address of the box hosting your web site?
What name do you want to use?
Let assume you want to call it ourweb and its IP address is 192.168.0.1
In your servers DNS, go into the local zone
create an A record or Hhost record and leave the suffix blank.
in the name just put ourweb and in the ip address put the internal ip address.
close the dns
In a cmd box, type in nslookup ourweb and it should return the IP address you entered.
open a web browser
type in http://ourweb. Do you see the web page?
If yes, great.
If no, are you using a proxy server within IE? If yes, check that the exceptions section in the proxy settings includes 192.168.*
(remember 192.168.x.y is just my example)
The point being that from the outside, DNS is used to direct users to find your web server etc.
Internally, you are already on the domain so you only need dns to find the host (ourweb) not the fully qualified domain (ourweb.ourdomain.com)
hope this helps a little
Regards
keith
Internally, you are already on the domain so you only need dns to find the host (ourweb) not the fully qualified domain (ourweb.ourdomain.com)
hope this helps a little
Regards
keith
If the server hosting your web server is already in your dns then you do not have to do anything.
Simply putting http//server_name or http://ip_address will take you to the web pages :)
Simply putting http//server_name or http://ip_address will take you to the web pages :)
Out of interest, were you wanting to use the same method to get to the web page as you would if you were outside?
http://www.yourdomain.com for example?
http://www.yourdomain.com for example?
ASKER
Keith:
I think you hit it on the head. I just have one question. When I go to the forward lookup zone and the n right click our domain name it gives me a menu. I then go to "new host" and it gives me a dialog box. On the top under "location" it already has our domain name (ourdomain.com). The next textbox down asks for a name. Is this what I leave blank? Our web site name is the same as our internal domain name.
Thanks
Mike
PS...I appreciate your patience Keith
I think you hit it on the head. I just have one question. When I go to the forward lookup zone and the n right click our domain name it gives me a menu. I then go to "new host" and it gives me a dialog box. On the top under "location" it already has our domain name (ourdomain.com). The next textbox down asks for a name. Is this what I leave blank? Our web site name is the same as our internal domain name.
Thanks
Mike
PS...I appreciate your patience Keith
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Excellent and thank you.
regards
Keith
regards
Keith
ASKER
Keith:
You also helped me set change a secondary DNS to Primary on the last forum thread. Your the best. I wish I could buy you a beer!
Best Regards
Mike
You also helped me set change a secondary DNS to Primary on the last forum thread. Your the best. I wish I could buy you a beer!
Best Regards
Mike
Why thank you kind sir lol. I drink carlsberg :).
Glad to help and we're always here.
Regards
Keith
Glad to help and we're always here.
Regards
Keith
If you had an interenal DNS server, you need add a HOST record ('A' record) with the name and address above.
if you don't have an internal DNS server in use, then you would do this:
Install the DNS server service on one of your servers. Then, from the DNS manager, right-click on the server and create a new 'forward-lookup' zone. Give the zone the domain name of the webserver (domain.com). Then right-click on the zone and add host records. Note that you will need to add host records for all hosts in the domain that your internal users need to access. This means that you may have to duplicate some records from the outside DNS zone into your internal DNS zone.
Next, you'll need to have all internal users start using this DNS server, so you want to set it as their primary DNS server. Hopefully you have DHCP, cause that will make this much easier.
Now - internal ppl will query the internal DNS server, and when they lookup 'sigma.domain.com', they'll get the internal address (you could even alias www to sigma if you wanted).
Note that your ISP's DNS server is no longer in use - the internal DNS servers is going and resolving lookups on the internet directly from the root servers. If you want, you can set your DNS server to use the ISPs DNS server as a forwarder. Some ppl like to do this, I personally don't bother.
good luck...
Next, you can set the DNS server to use a forwarder to your ISP