?
Solved

Host external dns, on internal dns server

Posted on 2007-04-06
9
Medium Priority
?
322 Views
Last Modified: 2010-08-05
A while back we were having a problem where our remote centers could not resolve the name etrack.teletrack.com  If I connected to the dns server (windows 2003, Active Directory) it could not resolve the name either. I would then flush and register dns, stop/start netlogon and then stop/start dns. I could then resolve the name. They wanted me to try to host the teletrack.com domain internally, so I setup the teletrack.com zone in here, and added all the records I could find. The remote hosts can now do what they need to do, but if we try to email teletrack, or if they try to email us, it fails. We receive a "(000B09B6) Host unreachable" message. I've attempted to recreate their mx records, but I'm not all that experienced with this. I've added A records for www (67.32.116.71), mail (12.178.11.202), mail2 (67.32.116.75), mail3 (12.178.11.203) and mail4 (67.32.116.74), and also one for just teletrack.com (67.32.116.71). I've also added mx records for mail, mail2 mail3 and mail4. It is currently not working. Is this something that is possible, or should I just remove the zone, and have the remote locations deal with the first problem. I posted the IP's, as they are available on the net, but if they need to be removed, I will do so...
0
Comment
Question by:ptuttle1319
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 3
9 Comments
 
LVL 30

Accepted Solution

by:
LauraEHunterMVP earned 1000 total points
ID: 18866167
It's generally not a good idea for you to host externally-resolveable records on your internal DNS server except as a temporary troubleshooting measure.  The entire point of externally-resolveable records is that their DNS is not your problem; ie, if they change the IP address of one of their servers, you don't need to care - you point to their DNS, their DNS has the correct update and resolves your query accordingly.  If you're hosting a zone containing their records, you'll have to update your copy of their zone every time they make a change - as an example, can you imagine needing to keep track of every time the IP address for www.microsoft.com or www.google.com changed? :-)

Given that hosting their records internally hasn't corrected your problem, I would recommend that you delete your internal zone that is hosting their records, and work with the remote center to troubleshoot why their DNS server(s) aren't responding as expected.

Hope this helps.

Laura E. Hunter - Microsoft MVP: Windows Server - Networking.
0
 
LVL 38

Assisted Solution

by:Hypercat (Deb)
Hypercat (Deb) earned 1000 total points
ID: 18866213
I would completely remove the zone for teletrack.com and instead try setting up a conditional forwarder for that domain.  I ran DNSreports on their domain, and their were some error messages regarding their DNS servers reporting different SOA serial #s.  This could indicate some misconfiguration at their end, which is probably why you've been having problems.  I would recommend using their nameserver at 67.32.116.70 as a conditonal forwarder, since this server reported the latest SOA serial #.
0
 

Author Comment

by:ptuttle1319
ID: 18866221
It did solve the inital problem. Where the hosts couldn't resolve the etrack.teletrack.com address. It's now fixed. So I'm stuck with trying to fix this aspect of it. Their ip addresses are fairly static, so I shouldn't have a problem there. This is also something I've tried to get going in a lab, with the MX records, so i'd like to see how to get it to work...
0
Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

 

Author Comment

by:ptuttle1319
ID: 18866226
where do you set the conditional forwarder, on a microsoft dns server?
0
 
LVL 30

Expert Comment

by:LauraEHunterMVP
ID: 18866237
On your internal DNS server, go to the properties of the server and select the Forwarders tab.  Under "for the following domains" enter teletrack.com and specify the IP address of their DNS server.
0
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 18866241
Yes - open the DNS mgmt. console.  Right-click on the server name and go to Properties; click the Forwarders tab.  In the top box, click New and put in the domain name, and then put in the IP address for their nameserver.
0
 

Author Comment

by:ptuttle1319
ID: 18867202
Looks like the timestamp on those answers came through at the same time....are either of you opposed to split points? I won't be able to test until sunday, but if it does work, I'll award the points then.
0
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 18867209
Split points are yours to award - this happens all the time, don't sweat it.
0
 
LVL 30

Expert Comment

by:LauraEHunterMVP
ID: 18868016
No worries, as hypercat says, simul-posts happen all the time around here.  (Though it's very considerate of you to ask.)
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Ready to improve network connectivity? Watch this webinar to learn how SD-WANs and a one-click instant connect tool can boost provisions, deployment, and management of your cloud connection.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…

718 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question