Ready to showcase your work, publish content or promote your business online? With Squarespace’s award-winning templates and 24/7 customer service, getting started is simple. Head to Squarespace.com and use offer code ‘EXPERTS’ to get 10% off your first purchase.
Solved
Cannot ping external IP/web address from LAN, yet can access site fine
Posted on 2009-03-31
Embarking on a trip down the rabbit hole that started with Wordpress but is ending up with crazy DNS issues - hoping someone can help! My LAN network is set up with a Windows 2003 box which hosts DNS, a 10.5.6 Mac server which hosts our website, DHCP, and other various things, all behind a Netgear FVX538 firewall box.
The Mac server hosts our Wordpress website - recently I had been trying to start hosting a podcast for the Wordpress blog. Wordpress normally supports auto enclosures of media files, but that wasn't working, which I thought was strange. After much searching and testing, I realized that something was amiss with DNS that was most likely causing the issue.
I can ACCESS my website from the LAN (both on the server it's being hosted from and other computers in the LAN) but PINGING either the external IP or the domain name doesn't work. It pings for one entry, spits back the IP address, then stops with no other error message or notification of any kind. I can ping other external sites just fine, and can ping internal IP addresses just fine as well.
I'm not sure if this is a DNS problem, although it seems safe to say that it is. And because I've noticed no other issues, I'm not really sure where to begin in figure out what the problem is. It seems that there's some issue going on with internal DNS, so if anyone has advice of what I should look for, please let me know!
The Mac server hosts our Wordpress website - recently I had been trying to start hosting a podcast for the Wordpress blog. Wordpress normally supports auto enclosures of media files, but that wasn't working, which I thought was strange. After much searching and testing, I realized that something was amiss with DNS that was most likely causing the issue.
I can ACCESS my website from the LAN (both on the server it's being hosted from and other computers in the LAN) but PINGING either the external IP or the domain name doesn't work. It pings for one entry, spits back the IP address, then stops with no other error message or notification of any kind. I can ping other external sites just fine, and can ping internal IP addresses just fine as well.
I'm not sure if this is a DNS problem, although it seems safe to say that it is. And because I've noticed no other issues, I'm not really sure where to begin in figure out what the problem is. It seems that there's some issue going on with internal DNS, so if anyone has advice of what I should look for, please let me know!
3-
3
6 Comments
Active 7 days ago
If you're getting the correct IP Address back in response to a request for a name then DNS is done and out of the picture.
However, your server is hosted inside your network in this scenario?
That is you have something like this:
Internet ----- Router ----- Switch ----- Clients
|
Server
And you use NAT to get a public IP address from outside your network to your Server?
If so, then no, clients will not be able to access the server using the public IP (and therefore also won't be able to using the public name which presumably resolves to that IP). If that is true, do you have a DNS server inside your network as well?
Chris
That diagram is basically what we have. I have the router/firewall box set up with the ISPs DNS server, then an internal DNS server hosted on the Windows 2003 box. And yes, my firewall is using NAT to get outside the server.
Active 7 days ago
Okay, so clients inside won't be able to access on the public IP because it just gets horribly confused trying to route the requests.
The traditional answer is to create a zone on the internal DNS server that will provide clients inside the network with a private IP address for the domain name in question. This only works if all your internal clients use that internal DNS server.
I've blogged about this in the past, so I hope you'll forgive me pasting the link rather than rewriting my instructions for it :)
http://www.highorbit.co.uk/?p=459
Chris
I will try those instructions - thanks - but I may have figured out something else. Tried switching out the Netgear firewall to our old Symantex VPN/100 and lo and behold, everything started working again - enclosures, pinging, the whole nine yards. So I guess when I was setting up the Netgear I missed a setting, any thoughts as to what that might be, or should I do your DNS suggestions first (with the Netgear) and see if that works first?
Featured Post
WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
This article will help to fix the below errors for MS Exchange Server 2016
I. Certificate error "name on the security certificate is invalid or does not match the name of the site"
II. Out of Office not working
III. Make Internal URLs and Externa…
The Super Bowl is just days away. Millions of advertising dollars will be spent in just a few hours to drive people to websites around the globe. Optimizing your site in anticipation of a big event like this (and the traffic surges that follow) will…
- Web Development
- Disaster Recovery
- Security
- Media Temple
- Web Servers
- *Content Delivery Network (CDN)
Watch the video to learn how one can deal with PST file corruption issue with an outstanding Kernel for Outlook PST Repair Tool easily. Using this tool, non-technical users can swiftly perform the repair process to restore their essential data witho…
Through the video, you can check the migration process of Outlook PST file to PDF. Kernel for Outlook to PDF tool can convert Outlook emails with all attributes like Subject, To, From, Cc, Bcc and other folders such as Inbox, Outbox, Sent Items, Jun…
Suggested Courses
Course of the Month5 days, 9 hours left to enroll
569 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.