[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 296
  • Last Modified:

DNS problems: website within firewall/DNS outside/Inside/laptop/Wrong IP

Hi All:

Ok, this is a somewhat complicated problem.

Let me start with the network set up:

1. IIS server
2. Firewall/router
3.  Internally hosted DNS server
4.  External ISP DNS server

The problem I am having is that people are automatically pulling DNS servers to use.  They are grabbing the external ISP DNS to resolve domain names.  We have a domain name within the firewall.  

Sometimes, users pull the external IP address (65.xxx.xxx.xxx) and are not able to resolve to the website.  Sometimes the users pull the internal IP address (10.1.1.23).  The domain name should be linked with the internal IP address when within the firewall.

I think the only solution to this is to force users within the network to pull the internal DNS server and block the external DNS server.   However, with lap tops this is an issue because often users are sometimes within the network, sometimes without.  With desktops, we force the DNS look up to the internal DNS and we have no problem, however with laptops I am at a loss how to solve.  Any ideas?

0
gnosticgnowledge
Asked:
gnosticgnowledge
1 Solution
 
zephyr_hex (Megan)DeveloperCommented:
you could edit the hosts file on the laptops so that the internal ip maps to your internal site.
0
 
gnosticgnowledgeAuthor Commented:
Yes, that came to mind.  A little out of my league (I am a developer).  Any other possible solutions?
0
 
prashsaxCommented:
Why have you specified ISP DNS server IP address in Network configuration of Laptop users.

You should configure the laptops and desktop to use DHCP for IP and DNS configuration.

DHCP should always give them Internal DNS server IP address.

Then you can put forwarders on the internal DNS server, so that It can also resolve external IP address.

Now as for laptop users you go outside the network, and you are concerned that how will they resolve IP address from outside.

The answer to that is that when they are outside your network, there individual ISP will provide them the external DNS server IP address.

Suppose some will use DSL router to connect to internet, then their DSL router will assign IP address to their laptop.
Some would use dialup modem, so they will get there IP address and other config from there ISP.

So, always configure Internal DNS IP address.
0
Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

 
gnosticgnowledgeAuthor Commented:
Ah, ok.  So to solve this, the DHCP needs to be configured so the user that logs onto the network will only go to the internal DNS?
0
 
prashsaxCommented:
Yes. That right, for users machine and laptop only Internal DNS.

And, put forwarder on your Internal DNS server.

Specify ISP DNS IP address as forwarder on Internal DNS server.
0
 
rsivanandanCommented:
Agree with Prashsax. The way you configure it, it will be taken care.

Cheers,
Rajesh
0
 
gnosticgnowledgeAuthor Commented:
I checked the DHCP.  It was the external DNS listed in the entries listed.  I am guessing this is wrong.  How do I remove these entries from the DHCP interface.  Thanks.
0
 
prashsaxCommented:
Open the DHCP Admin Console.

Locate the DHCP Scope in left pane. It should show IP address as 10.1.1.x.

Expand it.
Now Click on Scope options.

You should be able to see DNS Servers in Right hand pane.
Double click it, and it will open a window.

Then remove the ISP DNS server from the list.
Add your internal DNS server.


0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now