Is an alternate DNS configuration possible?

This is the situation.  There is a managed router on my network with a 2003 SBS server.  The server's dns is set up with dns forwarding so that the clients can access the internet.  The router is handing out the dhcp with the server's ip as the dns server.  We have a few users who do not authenticate on the domain, but need to be able to get on the internet.  At first the router also had the dns of the isp listed as a secondary dns server in the dhcp scope, but that was causing problems with the users that authenticate on the domain so that was removed and now the only dns server given out by the router is the server's ip.  Now the users that do not authenticat ont he domain cannot get internet access.  Is this configuration possible?  If so how can I accomplish it?  
suzanne2003Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Rob WilliamsCommented:
DHCP should be configured on the server, not the router, especially where you are running SBS. This allows for central management, more scope options and proper DNS registration of older O/S's.
The fact that the PC's are not members of the domain and cannot authenticate is irrelevant. They can still be assigned DHCP assign information by the server and will work fine using the server for DNS and DNS forwarding.
0
Rob WilliamsCommented:
Since you are reconfiguring an existing SBS, which requires using wizards when ever possible, you should have a look at the following document regarding setting up DHCP on an existing SBS:
http://www.microsoft.com/technet/prodtechnol/sbs/2003/plan/gsg/appx_c.mspx#EXG
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
suzanne2003Author Commented:
So if I run through this wizard then it will disable the router as my dhcp device and there is nothing I will need to do with the ISP? (every time I need to change something I need to call them.  I have no access to the router myself.)  
0
Microsoft Azure 2017

Azure has a changed a lot since it was originally introduce by adding new services and features. Do you know everything you need to about Azure? This course will teach you about the Azure App Service, monitoring and application insights, DevOps, and Team Services.

Michael FrederickRegional IT Manager IIICommented:
1. Have your ISP dispable the DHCP on the router.
2. Setup DHCP on your 2003 server, make sure to setup your scope to use the GW, DNS and any reserved IPs.
3. The cleints that do not auth to the server should not have an issue with using the DNS or DHCP on the server.

You want to time this right, so that when the DHCP is disabled on the router, your DHCP on the server is up and running. After hours is the best. This way when the users login in the morning they are using the new DHCP server.

Cheers.
0
Michael FrederickRegional IT Manager IIICommented:
Correction:
1. Have your ISP disable the DHCP on the router.
0
Rob WilliamsCommented:
You, or you ISP, will have to disable DHCP on the router. If SBS sees the DHCP server, it will disable it's own DHCP service.

What is interesting, though DHCP should run on the SBS, it still should be working now for your non-domain clients. If they are assigned the SBS as their DNS server, it should still redirect the DNS queries to the DNS forwarder.
Have you checked with  ipconfig /all on the problematic client PC's that they are being assigned the appropriate IP addressing.
To confirm it is a DNS issue see if they can connect to Google by IP:
http://64.233.187.99/ 
0
suzanne2003Author Commented:
Yes they are getting all the correct ip addressing correctly but they are not able to get to google by IP.  The only thing different with these users is that they do not authenticate on the domain.
0
Michael FrederickRegional IT Manager IIICommented:
Then this is not a DNS issue. You should still setup the 2003 server as the DHCP server, but if you can not get to google using and IP with either machine, you have something esle going wrong here.

Is there a firewall inplace?
Can you ping the router from either one of these machines?
Can you ping the outside DNS servers (the forwarders)?

Cheers
0
Rob WilliamsCommented:
Does your SBS have 2 network adapters? Might normal traffic be routed through it and this traffic is routing directly to the router and the ISP has a restriction as to MAC addresses or # of connections. Compare a  tracert  on a working and non-working PC. The router may not respond, you might get a "request timed out" message but it will at least indicate the number of hops/devices.
0
suzanne2003Author Commented:
I don't know what was wrong exactly, but I made the SBS server the DHCP server and now everything is working fine.  Thanks for all of your help.
0
Rob WilliamsCommented:
Excellent. Glad to hear.
SBS likes to have all the default configurations, and using wizards. There are so many interrelated components that some break if you "stray from the norm", unlike server 2003 which you can customize as you wish. Not to say SBS is not a great product, it is.
Cheers !
--Rob
0
Michael FrederickRegional IT Manager IIICommented:
Perfect!
If there is anything else that we can help you with, just ask.

Cheers
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Networking

From novice to tech pro — start learning today.