Unable to access Certain DNS name Internally

I am having some issues with DNS where it will not allow me to access certain DNS Names internally.... I am able to access them by their IP Address though.

Example-

-mail.7Medical.com-
172.30.3.10 internal address
206.11.107.45 is the outside address


-crm.7Medical.com

I have verified that NSLOOKUP is working properly!


I have tried adding a A Host name in DSN for the outside address- Did not work!

Any help would be greatly appreciated... This is a high priority!!!!

Regards,
Jon
jburbachAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

dougstubbsCommented:
Try stopping the dnscache service (on command line run net stop dnscache).  Then try to ping the hostname.  If this does not work, can you post the A record for the domain.

0
jburbachAuthor Commented:
Tried stopping and starting dnscache and that did work. I am unable to ping mail.7medical.com as well... I have tried posting a Host A record and that did not work either.

Thanks
Jon
0
Walter PadrónCommented:
Non-authoritative answer:
Name:    crm.7medical.com
Address:  206.11.107.44

The DNS resolution is ok for this record.

Do you have separated internal and external DNS servers?
0
Cloud Class® Course: CompTIA Healthcare IT Tech

This course will help prep you to earn the CompTIA Healthcare IT Technician certification showing that you have the knowledge and skills needed to succeed in installing, managing, and troubleshooting IT systems in medical and clinical settings.

jburbachAuthor Commented:
We Currently have Internal Integrated DNS... The External DNS is provided by our ISP.

Jon
0
dougstubbsCommented:
If stopping the dnscache service allows you to get the correct IP it could be related to Windows negative dns caching.  
See the following kb for a more through explanation:

http://support.microsoft.com/kb/318803/en-us

Jon, can you post the results of a your nslookup internally, it appears the external record is working as intended.
0
Walter PadrónCommented:
I suspect that your registered DNS name is named identically to your internal AD domain name, is that setup in that way?
0
jburbachAuthor Commented:
Nope my Internal domain name is pdnlan.local.
0
jburbachAuthor Commented:
The DSN Cache really has nothing to do with this issue...
0
jburbachAuthor Commented:
This is what I think is occuring

When you surf to crm.7medical.com from my office (or anywhere for that matter) DNS resolves crm.7medical.com to 206.11.107.44, the public IP for that webserver.   Your browser tries to go to that address, but since that is a NATed address, on the external interface of the firewall, when you try to go there from "inside" you are essentially trying to go out and right back in on the same (external) interface.  Most (if not all firewalls) take exception to that sort of thing.

 Unfortunately, editing the hosts file wouldn't be effective, because while the FQDN would work fine while you were on the 7medical LAN, it wouldn't work when you were out in the rest of the world.

0
Walter PadrónCommented:
i think you must add a zone 7medical.com to your internal DNS servers an put there A records for the private ip address of all your servers. Make sure you "Clear the DNS cache" on your server.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows 2000

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.