DNS pointing a subdomain of ours to another's server

Posted on 2006-05-16
Last Modified: 2010-04-18
A user started a pilot site and hosted it with the web developer that created the site.  In order to lend credibility to the site, they wanted to call it PILOT.OURDOMAIN.ORG, so I set up an A record on our authoritative DNS for that subdomain to point to their IP address.  It works fine for people who aren't behind our firewall, but when we try to go there from within our network, we get a "site not found" error.  Running 2003 server as our internal DNS server ( which is why I ask it in this area -  If I'm wrong please let me know where ).  I'm thinking I need to set up something on our internal DNS, but not really sure how to proceed.  Maybe the fact that it is a "subdomain" of ours is messing with the resolution?  I'm a little sketchy when it comes to specifics of DNS servers....  In looking at our internal DNS, I see some "forward lookup zones" and am wondering if I should add one for PILOT.OURDOMAIN.ORG?  And how?  Trouble is, if I simply point the subdomain name to an IP address, they might just get the default page of that server ( the guy at the web developer tells me they're using Apache to redirect )  When I just type in the IP in a browser, I get a different site than the one I should for the IP they gave me to enter into our authoritative DNS, and different from the one people get who are outside our firewall and type in PILOT.OURDOMAIN.ORG.

It's a confusing scenario....a bandaid on a workaround to make the marketing people happy.  
Question by:kburmaster
    LVL 16

    Expert Comment

    Did you try to access it from a PC in your internal network that is not behind the firewall?
    If not, try that first.
    If it works well without the firewall...I would look at the Firewall first.

    In other words, before going through a reconfiguration...remove, one at a time, any device that could possibly be interferring.

    Author Comment

    Our entire internal network is behind the firewall, so that's not really possible.

    Author Comment

    I think I figured it out.  I added a host (A) record on our internal DNS for PILOT on OURDOMAIN.ORG pointing to the IP address of the offsite server, and it seems to work now.  I'm not going to pretend I understand exactly why it works this way, and not when I simply enter the IP address in a browser, but that wasn't really the question.

    LVL 33

    Expert Comment

    This means that PILOT isn't a subdomain name, its just a computer name.  So, OURDOMAIN.ORG is the domain name...  This domain name is used both internally and externally on the internet. needs to resolve to an IP address on the internet (if you want people from inside your network and from anywhere on the internet to access it.

    WWW = IP address of web server on internet

    Just like PILOT must be related to a public IP address on the internet....

    However, because you internal domain name is identicle to the registered internet domain name, your internal network will not use the DNS settings available on the internet...  So, you must create a HOST record or "A" record on your local DNS server for every server in the namespace.  So PILOT = xx.xx.xx.xx <-- the IP of the offsite webserver.

    In general, it is recommended that you don't name your internal windows domain the same as your registered internet domain name.  If you chose a different name (like ourdomain.local), you would not have this problem...

    Accepted Solution

    PAQ / Refund
    ee_ai_construct, CS Moderator

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
    Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
    Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now