Solved

DNS problems:  website within firewall/DNS outside/Inside/laptop/Wrong IP

Posted on 2006-07-13
8
222 Views
Last Modified: 2010-03-18
Hi All:

Ok, this is a somewhat complicated problem.

Let me start with the network set up:

1. IIS server
2. Firewall/router
3.  Internally hosted DNS server
4.  External ISP DNS server

The problem I am having is that people are automatically pulling DNS servers to use.  They are grabbing the external ISP DNS to resolve domain names.  We have a domain name within the firewall.  

Sometimes, users pull the external IP address (65.xxx.xxx.xxx) and are not able to resolve to the website.  Sometimes the users pull the internal IP address (10.1.1.23).  The domain name should be linked with the internal IP address when within the firewall.

I think the only solution to this is to force users within the network to pull the internal DNS server and block the external DNS server.   However, with lap tops this is an issue because often users are sometimes within the network, sometimes without.  With desktops, we force the DNS look up to the internal DNS and we have no problem, however with laptops I am at a loss how to solve.  Any ideas?

0
Comment
Question by:gnosticgnowledge
8 Comments
 
LVL 42

Expert Comment

by:zephyr_hex (Megan)
ID: 17100984
you could edit the hosts file on the laptops so that the internal ip maps to your internal site.
0
 

Author Comment

by:gnosticgnowledge
ID: 17101712
Yes, that came to mind.  A little out of my league (I am a developer).  Any other possible solutions?
0
 
LVL 13

Expert Comment

by:prashsax
ID: 17101836
Why have you specified ISP DNS server IP address in Network configuration of Laptop users.

You should configure the laptops and desktop to use DHCP for IP and DNS configuration.

DHCP should always give them Internal DNS server IP address.

Then you can put forwarders on the internal DNS server, so that It can also resolve external IP address.

Now as for laptop users you go outside the network, and you are concerned that how will they resolve IP address from outside.

The answer to that is that when they are outside your network, there individual ISP will provide them the external DNS server IP address.

Suppose some will use DSL router to connect to internet, then their DSL router will assign IP address to their laptop.
Some would use dialup modem, so they will get there IP address and other config from there ISP.

So, always configure Internal DNS IP address.
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 

Author Comment

by:gnosticgnowledge
ID: 17101911
Ah, ok.  So to solve this, the DHCP needs to be configured so the user that logs onto the network will only go to the internal DNS?
0
 
LVL 13

Expert Comment

by:prashsax
ID: 17101936
Yes. That right, for users machine and laptop only Internal DNS.

And, put forwarder on your Internal DNS server.

Specify ISP DNS IP address as forwarder on Internal DNS server.
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17101991
Agree with Prashsax. The way you configure it, it will be taken care.

Cheers,
Rajesh
0
 

Author Comment

by:gnosticgnowledge
ID: 17116243
I checked the DHCP.  It was the external DNS listed in the entries listed.  I am guessing this is wrong.  How do I remove these entries from the DHCP interface.  Thanks.
0
 
LVL 13

Accepted Solution

by:
prashsax earned 500 total points
ID: 17116789
Open the DHCP Admin Console.

Locate the DHCP Scope in left pane. It should show IP address as 10.1.1.x.

Expand it.
Now Click on Scope options.

You should be able to see DNS Servers in Right hand pane.
Double click it, and it will open a window.

Then remove the ISP DNS server from the list.
Add your internal DNS server.


0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
Resolve DNS query failed errors for Exchange
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now