• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 266
  • Last Modified:

Firebox x750e fireware 10.0. 2

We have a webserver that hosts 5 websites.  1 website's name is resolved by our internal dns servers and that website works fine.  the others resolve from the isp's dns servers.  none of these websites are available to us.  they are available to users outside of our network.  when i put in a host file entry on my computer for the 4 broken websites they work fine.  

We never had this problem until the firebox was installed.  does anyone know what the firebox is doing?  thanks

0
jamesmetcalf74
Asked:
jamesmetcalf74
1 Solution
 
dpk_walCommented:
As all the websites are hosted internally; and you are trying to access the website from the internal machine using FQDN, this is causing a loop, also called event horizon; on a networking device the egress and ingress interfaces cannot be same, so you are having the problem.
Many devices like cisco incorporate something called hairpin to resolve this issue.

To resolve the issue as you did, you can add entries in hosts file on the local machine(s); or you can configure your DNS server to redirect the queries from internal machine for the website(s) to internal IP address [called DNS doctoring].

Thank you.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Simple Misconfiguration =Network Vulnerability

In this technical webinar, AlgoSec will present several examples of common misconfigurations; including a basic device change, business application connectivity changes, and data center migrations. Learn best practices to protect your business from attack.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now