Solved

www issue caused by internal and external domain names being same

Posted on 2006-06-15
5
250 Views
Last Modified: 2010-04-13
I have looked at everything on the sie and nothing is exactly what I am experiencing, so here goes .. I sure hope someone can help!

Windows 2000 Server SP4 with Exchange 2000

I have an internal domain name of company.com, the public domain is company.com

I host email internally on Exchange

I host a website externally using a hosting company who also runs primary DNS for company.com

I have made an entry at the hosting company of server.company.com that points back to my static IP.

From the web, I can access all of my resources on the server.  Email works fine.

The problem is, when I type www.company.com from a workstation on the local network, I get page cannot be displayed. (on server and workstations)

To solve this issue I DELEGATED www. to the namservers of the hosting company.

Now from the server I see the external website ... from the workstations however, I get the IIS basic page --> This Site is Under Construction

I know people will say put in a CNAME record pointing to the external website IP .. the problem with that is the hosting company uses a webfarm and publishes all the IP's in the DNS record ... they take them down without notice and replace them with servers with new IP's ... so I can't pick an IP and trust it wil be up forever (I know because I tried this and it doesn't work more than a couple of weeks) ...

I can't turn off IIS becuase of OWA, etc ...

I need to resolve this ASAP so I am offering 500 points!!


Rob
0
Comment
Question by:robertbranch
  • 2
5 Comments
 
LVL 17

Accepted Solution

by:
John Gates earned 500 total points
ID: 16913069
from the server where things work where does www.company.com resolve to?  The workstation?
Your internal and external domains are the same...  This is not the Microsoft recommended configuration, for the very reason you are having ths issue.  you have a few options.  You could upgrade the domain to Windows server 2003 and then rename the domain to a company.local for the inside DNS.  The problem with your name being the same for both is that your internal server thinks it is autoritative for the domain company.com and if it cannot resolve www it does not look to other servers to resolve it.  So you would have to keep an A record on the internal server and change the IP occasionally.  The other thing you could do is bring your website in locally.  Short of running bind and setting up views and transfer rules the above options are all you can really do....



Hope this helps!
-D-
0
 

Author Comment

by:robertbranch
ID: 16913140
from the server it resolves www.company.com to 65.218.234.xx ... if you do the resolution multiple times you may get 3 or 4 differnt addresses.

from the workstation it resolves www.company.com to 192.168.1.2

I didn't create this domain, so I had no control over the naming convention. I was asked to help resolve this specific issue. I don't think they are interested in upgrading at this juncture.

I have done this multiple times before when the domain names were the same by enteringing a host record for www  ... the difference this time is the multiple addresses that return.

I am not sure why the workstations who use 192.168.1.2 as primary DNS don't recognize the delegation that was put on the DNS server.

Maybe if I could stop IIS from answering for www.company.com that would help ..

0
 
LVL 17

Expert Comment

by:John Gates
ID: 16913433
>I am not sure why the workstations who use 192.168.1.2 as primary DNS don't recognize the delegation that was put on the DNS server.<

You cannot delegate in this manner.  When a server holds a primary or active directory zone for comapny.com it will not forward or look to another server for the domain.  It kind of works like this:


I have the record company.com and I am authoritative so if www.company.com does not exist in my records the name cannot be found.  


So with this said you must have an a record for www on your local DNS server with the ip 192.168.1.2


So in your case you will need to place multiple A records mirroring the ISP DNS records for www on the local server.  

The delegation you speak of is like if you had a remote site connected by WAN links for your company you could delegate the zone east.company.com to another Active Directory server at the remote site then if someone looked to company.com's dns for www.east.company.com it would forward it to the remote server.  Does this make sense to you?  You cannot delegate a root domain to a second server.

0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
What is Backup? Backup software creates one or more copies of the data on your digital devices in case your original data is lost or damaged. Different backup solutions protect different kinds of data and different combinations of devices. For e…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now