Host external dns, on internal dns server

A while back we were having a problem where our remote centers could not resolve the name etrack.teletrack.com  If I connected to the dns server (windows 2003, Active Directory) it could not resolve the name either. I would then flush and register dns, stop/start netlogon and then stop/start dns. I could then resolve the name. They wanted me to try to host the teletrack.com domain internally, so I setup the teletrack.com zone in here, and added all the records I could find. The remote hosts can now do what they need to do, but if we try to email teletrack, or if they try to email us, it fails. We receive a "(000B09B6) Host unreachable" message. I've attempted to recreate their mx records, but I'm not all that experienced with this. I've added A records for www (67.32.116.71), mail (12.178.11.202), mail2 (67.32.116.75), mail3 (12.178.11.203) and mail4 (67.32.116.74), and also one for just teletrack.com (67.32.116.71). I've also added mx records for mail, mail2 mail3 and mail4. It is currently not working. Is this something that is possible, or should I just remove the zone, and have the remote locations deal with the first problem. I posted the IP's, as they are available on the net, but if they need to be removed, I will do so...
ptuttle1319Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

LauraEHunterMVPCommented:
It's generally not a good idea for you to host externally-resolveable records on your internal DNS server except as a temporary troubleshooting measure.  The entire point of externally-resolveable records is that their DNS is not your problem; ie, if they change the IP address of one of their servers, you don't need to care - you point to their DNS, their DNS has the correct update and resolves your query accordingly.  If you're hosting a zone containing their records, you'll have to update your copy of their zone every time they make a change - as an example, can you imagine needing to keep track of every time the IP address for www.microsoft.com or www.google.com changed? :-)

Given that hosting their records internally hasn't corrected your problem, I would recommend that you delete your internal zone that is hosting their records, and work with the remote center to troubleshoot why their DNS server(s) aren't responding as expected.

Hope this helps.

Laura E. Hunter - Microsoft MVP: Windows Server - Networking.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Hypercat (Deb)Commented:
I would completely remove the zone for teletrack.com and instead try setting up a conditional forwarder for that domain.  I ran DNSreports on their domain, and their were some error messages regarding their DNS servers reporting different SOA serial #s.  This could indicate some misconfiguration at their end, which is probably why you've been having problems.  I would recommend using their nameserver at 67.32.116.70 as a conditonal forwarder, since this server reported the latest SOA serial #.
0
ptuttle1319Author Commented:
It did solve the inital problem. Where the hosts couldn't resolve the etrack.teletrack.com address. It's now fixed. So I'm stuck with trying to fix this aspect of it. Their ip addresses are fairly static, so I shouldn't have a problem there. This is also something I've tried to get going in a lab, with the MX records, so i'd like to see how to get it to work...
0
INTRODUCING: WatchGuard's New MFA Solution

WatchGuard is proud to announce the launch of AuthPoint, a powerful, yet simple, Cloud-based MFA service designed to eliminate the vulnerabilities that put your data, systems, and users at risk.

ptuttle1319Author Commented:
where do you set the conditional forwarder, on a microsoft dns server?
0
LauraEHunterMVPCommented:
On your internal DNS server, go to the properties of the server and select the Forwarders tab.  Under "for the following domains" enter teletrack.com and specify the IP address of their DNS server.
0
Hypercat (Deb)Commented:
Yes - open the DNS mgmt. console.  Right-click on the server name and go to Properties; click the Forwarders tab.  In the top box, click New and put in the domain name, and then put in the IP address for their nameserver.
0
ptuttle1319Author Commented:
Looks like the timestamp on those answers came through at the same time....are either of you opposed to split points? I won't be able to test until sunday, but if it does work, I'll award the points then.
0
Hypercat (Deb)Commented:
Split points are yours to award - this happens all the time, don't sweat it.
0
LauraEHunterMVPCommented:
No worries, as hypercat says, simul-posts happen all the time around here.  (Though it's very considerate of you to ask.)
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.