?
Solved

internal users can not access webservers external domain names or ip addresses

Posted on 2006-10-31
6
Medium Priority
?
166 Views
Last Modified: 2010-04-09
i have netscreen 5xt firewall. our webserver is behind this firewall along with all users. webserver is running fine and end users can access it through domain names or external ip address.

the problem i have is internal users can not access the web server through domain names its external ip address. i think it has something to do with the policy and i can't figure out.

any help is greatly appriciated.
0
Comment
Question by:cuc888
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
6 Comments
 

Author Comment

by:cuc888
ID: 17844506
anyone there?
0
 

Author Comment

by:cuc888
ID: 17846091
problem solved. thank you
0
 
LVL 3

Expert Comment

by:mahe2000
ID: 17849052
firewalls usually do not let users go outside by one interface and go in by the same interface and this is what is happening to you.
you need to resolve your domain internally. you have to install an internal dns server and configure your domain with the internal ip addresses there, then you have to let your internal users use this dns to resolve ip addresses  and let this dns ask others to resolve other domains.
another thing you can do is adding a record in the %SystemRoot%\system32\drivers\etc\hosts file of every machine with the domain name and the ip address, it will work but it is not a good idea.....
the record would be:
<ip address> <domain name>

run ipconfig /flushdns after changes to purge the cache.
0
 

Author Comment

by:cuc888
ID: 17850951
dns was not the problem but my IIS configuration on the web server was wrong.
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 18042198
PAQed with points refunded (500)

Computer101
EE Admin
0

Featured Post

WatchGuard's M Series Appliances - Miecom Approved

WatchGuard's newest M series appliances were put to the test by Miercom.  We had great results and outperformed all of our competitors in both stateless and stateful traffic throghput scenarios! Ready to see how your UTM appliance stacked up? Download the Miercom Report!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question