Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Internal DNS to External Website

Posted on 2006-11-01
8
Medium Priority
?
758 Views
Last Modified: 2008-02-24
I was just made responsible for our small network (12 users) when our manager left to take a better job. When my users try to go to our external website they get a page cannot be displayed error, but if they are not in the office they can access it without issue. I called the old manager and he was not very helpful. However, I do remember at some time he was trying to setup an intranet site for the company. I think he setup DNS somewhere that routes all traffic going to our external website to that internal instranet website. Needless to say he did not complete that task (was a common issue) and I now need to at least undo the DNS setting so all the users can get to the external facing website for our company from their internal PC's. I am not well versed in DNS, but do have good basic networking skills. Can someone point me in the right direction as to how to correct this?

TIA
0
Comment
Question by:andrej770
8 Comments
 
LVL 5

Expert Comment

by:darrenakin
ID: 17854699
On one of the PC's in question please go to Run and type cmd, then from there type ipconfig /all, please list your results here. Also can you give me an idea of the network setup? Like Router IP, Server IP and so on
0
 
LVL 2

Expert Comment

by:HeavyWaterLTD
ID: 17854702
Are you running this server internally?
What is the internal IP address of the server hosting your website?
0
 
LVL 12

Expert Comment

by:r_naren22atyahoo
ID: 17854834
Type

ping websiteaddress.com
from the client machines

it may resolve an internl network address.

now go the DNS Server Console.
dril down to the forward lookup zones and find the record assigned to that ip address.
delete it.

regards
naren

0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
LVL 25

Assisted Solution

by:mikeleebrla
mikeleebrla earned 400 total points
ID: 17854877
basically you need to see where your client machines are pointed to for DNS name resolution.  It they are pointed to an internal DNS server, then all you need to do is go to that internal DNS server and create an A record that points to the IP address of your web server in the forward lookup zone named 'yourdomain.com'.  If the server is hosted internally, then you need to point this A record to the INTERNAL IP of the server, if it is hosted externally, then you need to point it to the external IP of the server. thats it.

more than likely your internal windows domain (assuming you have one) and your external domain have the same name, which is fine,,,, but the previous admin/engineer just didn't setup DNS properly for this type of setup.



0
 

Author Comment

by:andrej770
ID: 17855832
I tried what you kind folks have stated and it has not worked.  Here are the details.  When I do a ipconfig /all on a client I get this:

C:\>ipconfig /all

Windows IP Configuration

        Host Name . . . . . . . . . . . . : sacabc_8
        Primary Dns Suffix  . . . . . . . : southatlantic.org
        Node Type . . . . . . . . . . . . : Hybrid
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No
        DNS Suffix Search List. . . . . . : southatlantic.org

Ethernet adapter Local Area Connection:

        Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
        Physical Address. . . . . . . . . : 00-08-A4-A4-F6-74
        Dhcp Enabled. . . . . . . . . . . : Yes
        IP Address. . . . . . . . . . . . : 192.168.10.144
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        Default Gateway . . . . . . . . . : 192.168.10.252
        DNS Servers . . . . . . . . . . . : 192.168.10.1

In the DNS server there are two entries to the 192.158.2.1 address.  They are:

-DNS->SACSVR01->Forward Lookup Zones->southatlantic.org
(same as parent folder)                                          192.168.10.1
SACSVR01                                                             192.168.10.1

More info:

All DNS traffic appears to be pointing to the SACSVR01 server (192.168.10.1) and all web access works except to our external site.  It's strange.  Why would I need an A record to go to an externally hosted website.  The name resolution should be the same as any other externally hosted website right?
0
 

Author Comment

by:andrej770
ID: 17855837
192.158.2.1 should be 192.168.10.1.  Fat fingered that one. :-)
0
 
LVL 12

Expert Comment

by:r_naren22atyahoo
ID: 17855900
What is the result for

ping external-site-address.com(this is your externally hosted website)

on client computers


regards
naren
0
 
LVL 43

Accepted Solution

by:
Steve Knight earned 700 total points
ID: 17855903
As has been suggested above (so don't go giving me all the points!) if your domain name is the same internally and externally then when you ask for a record from dns such as www.southatlantic.org it goes to your internal dns server which states that it is authoratitive for that domain, no www record, go away please.

If it was a different domain name internally and externaly or if you hosted the real internet dns one internally then the query gets to the right place and you get the address returned.

Simple easy fix is get the external ip of your web server (assuming it is hosted at an ISP) and create a host record (A) called www which points at that address.
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question