[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 326
  • Last Modified:

Host external dns, on internal dns server

A while back we were having a problem where our remote centers could not resolve the name etrack.teletrack.com  If I connected to the dns server (windows 2003, Active Directory) it could not resolve the name either. I would then flush and register dns, stop/start netlogon and then stop/start dns. I could then resolve the name. They wanted me to try to host the teletrack.com domain internally, so I setup the teletrack.com zone in here, and added all the records I could find. The remote hosts can now do what they need to do, but if we try to email teletrack, or if they try to email us, it fails. We receive a "(000B09B6) Host unreachable" message. I've attempted to recreate their mx records, but I'm not all that experienced with this. I've added A records for www (67.32.116.71), mail (12.178.11.202), mail2 (67.32.116.75), mail3 (12.178.11.203) and mail4 (67.32.116.74), and also one for just teletrack.com (67.32.116.71). I've also added mx records for mail, mail2 mail3 and mail4. It is currently not working. Is this something that is possible, or should I just remove the zone, and have the remote locations deal with the first problem. I posted the IP's, as they are available on the net, but if they need to be removed, I will do so...
0
ptuttle1319
Asked:
ptuttle1319
  • 3
  • 3
  • 3
2 Solutions
 
LauraEHunterMVPCommented:
It's generally not a good idea for you to host externally-resolveable records on your internal DNS server except as a temporary troubleshooting measure.  The entire point of externally-resolveable records is that their DNS is not your problem; ie, if they change the IP address of one of their servers, you don't need to care - you point to their DNS, their DNS has the correct update and resolves your query accordingly.  If you're hosting a zone containing their records, you'll have to update your copy of their zone every time they make a change - as an example, can you imagine needing to keep track of every time the IP address for www.microsoft.com or www.google.com changed? :-)

Given that hosting their records internally hasn't corrected your problem, I would recommend that you delete your internal zone that is hosting their records, and work with the remote center to troubleshoot why their DNS server(s) aren't responding as expected.

Hope this helps.

Laura E. Hunter - Microsoft MVP: Windows Server - Networking.
0
 
Hypercat (Deb)Commented:
I would completely remove the zone for teletrack.com and instead try setting up a conditional forwarder for that domain.  I ran DNSreports on their domain, and their were some error messages regarding their DNS servers reporting different SOA serial #s.  This could indicate some misconfiguration at their end, which is probably why you've been having problems.  I would recommend using their nameserver at 67.32.116.70 as a conditonal forwarder, since this server reported the latest SOA serial #.
0
 
ptuttle1319Author Commented:
It did solve the inital problem. Where the hosts couldn't resolve the etrack.teletrack.com address. It's now fixed. So I'm stuck with trying to fix this aspect of it. Their ip addresses are fairly static, so I shouldn't have a problem there. This is also something I've tried to get going in a lab, with the MX records, so i'd like to see how to get it to work...
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
ptuttle1319Author Commented:
where do you set the conditional forwarder, on a microsoft dns server?
0
 
LauraEHunterMVPCommented:
On your internal DNS server, go to the properties of the server and select the Forwarders tab.  Under "for the following domains" enter teletrack.com and specify the IP address of their DNS server.
0
 
Hypercat (Deb)Commented:
Yes - open the DNS mgmt. console.  Right-click on the server name and go to Properties; click the Forwarders tab.  In the top box, click New and put in the domain name, and then put in the IP address for their nameserver.
0
 
ptuttle1319Author Commented:
Looks like the timestamp on those answers came through at the same time....are either of you opposed to split points? I won't be able to test until sunday, but if it does work, I'll award the points then.
0
 
Hypercat (Deb)Commented:
Split points are yours to award - this happens all the time, don't sweat it.
0
 
LauraEHunterMVPCommented:
No worries, as hypercat says, simul-posts happen all the time around here.  (Though it's very considerate of you to ask.)
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 3
  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now