Link to home
Start Free TrialLog in
Avatar of amoos
amoos

asked on

urgent forward lookup zone

i have set up a windows server with exchange on it.  all my dns is hosted by at&t.  my internal .local and my public is .org i only have one forward lookup zone in dns with forwarders to my isp.  so my question is do i need to add another primary forward lookup zone for my .org address since .local is not a valid domain on the internet

thanks
Avatar of zane_o
zane_o
Flag of United States of America image
This depends on a couple of factors.  If you are trying to connect to sites hosted locally and you need your .org addresses to resolve to your internal private IP addresses, then you should add the .org domain to your internal DNS.  For example, if your website www.yourorg.org is hosted on a server behind your firewall, and you need to access it using the internal IP address, the easiest way to do this is by having the zone in your DNS.
If you are not using the .org internally at all, with the exception of receiving e-mail to that domain, there is no need to add the second zone.
Avatar of amoos
amoos

ASKER

ok i use exchange for email.  so since i have a .local do i have to have a separate zone for .org for email????  exchange is on the same server as 2003 R2??
Avatar of amoos
amoos

ASKER

our website is hosted by someone else so i do not have to worry about that.  the only thing we use internally is the exchange.  so do i have to create another forward lookup zone for the email and addd the email record in that zone???  even though all the m records from my isp are forwarded to my internal ip from the firewall???  i am confused

please help
Avatar of zane_o
zane_o
Flag of United States of America image
You do not need to add a zone for to receive e-mail destined to the .org domain.  Make sure you have added the .org domain in the recipient policy inside Exchange and that there is a public MX record so that other mail servers on the Internet know how to send messages to your domain.
You should not have to do anything DNS related on your internal network to receive e-mail.  You do not need to created a zone internally or have an MX record internally.
Avatar of amoos
amoos

ASKER

great so can you tell me what i have to do on the recipient policy in exchange to do this???all the mail and records provided to me by my isp are forwarded from my firewall to my server internally.  
Avatar of zane_o
zane_o
Flag of United States of America image
Exchange 2003 or 2007?
Avatar of amoos
amoos

ASKER

exchange 2003
Avatar of zane_o
zane_o
Flag of United States of America image
From the Exchange System Manager, look under Recipients/Recipient Policies.  In the default Policy Properties, Click the E-mail Addresses tab.  Add your domain that you want to receive e-mail for and set it as the primary.
Avatar of amoos
amoos

ASKER

i have already done that. but that is exactly what i did.  so is that all i had to do??  the policies are set right in exchange.  so is there anything else i have to do???  all the ip's are forwarded from the firewall to the internal exchange server ip.  do i need to make the smtp banner the same as the mx record.

for example at&t has 12.xxx.xxx.xxx
mail.mydomain.org

my smtp banner is myserver.mydomain.org

do they need to be the same???
ASKER CERTIFIED SOLUTION
Avatar of zane_o
zane_o
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of amoos
amoos

ASKER

no that is not the ip of my server that is the ip that was given to me from at&t.  the ip i have for my exchange is 192.68.10.3 which is behind a watchguard firewall???  if there is something wrong please tell me what to fix??