Public Address went internal

I have some websites I am hosting.  However they are being hosted using one to one nat.  So when I am using external dns it looks for the public address, but for some reason I cant lookup my websites via the public addresses, I dont know if the firewall is blocking the loop or what, when I am outside the network, I can view the websites no problem, but internally Its not showing up . I am using a watchguard x500 .. any ideas ?

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Keith AlabasterEnterprise ArchitectCommented:
Are you hosting your own DNS as well or is that held by the ISP?
focusenAuthor Commented:
well our dns is hosted outside the network , so our ip addresses sare something like this


our dns = 209.222.313.x

so we are using a public address as our dns server, but its hosted outside , we can add records to it, but we dont want to .  I think my firewall sees a loop and is blocking it.
focusenAuthor Commented:
those numbers were just examples not real !
Keith AlabasterEnterprise ArchitectCommented:
So you don't have an internal dns server?
Is port 53 UDP traffic allowed out through the watchguard?
Your firewall is probably preventing it to go outside and come back in using the natted address. Something like;

Server (>Mapped to x.x.x.x)-----------Firewall (Nat)---------Internet.

So when you try to access your webserver, the dns server returns the address as x.x.x.x and then you try to connect to it. But you are trying to connect to x.x.x.x using a natted outgoing connection which the firewall might block.

If you try to access the websites using the local ip addresses within internal network and *IF* it works, you have 2 solutions;

1. Install a DNS Server inside to your domain and have an alias command to point the webservers to the local ip + provide this server as the dns server to all your internal machines.

2. Update the hosts file on all the machines to include the webserver resolution to the local ip address.

Depending on your network, you can choose which one to fit.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Software Firewalls

From novice to tech pro — start learning today.