• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 259
  • Last Modified:

DNS zone forwarding win svr 2003

i need to find a way somehow for just 1 site

its mitelxxxx.com

but i have a machine tht needs to when ANYone internally at my office need to connect to ya.mitelxxxx.com i need it to forward to an internal IP instead of an external

so like ya.mitelxxxx.com to get to 192.168.14.2    instead of using the public dns server to resolve it to a 64.xx.xx.224 address

ive tried creating a new zone but im really lost on how to do it i tried to find steps but noone really tries what im trying...



THanks

0
ritztech
Asked:
ritztech
  • 3
  • 2
  • 2
  • +2
1 Solution
 
ritztechAuthor Commented:
now is it mean just for the standard mitelxxxx.com     or can i do it for ya.mitelxxxx.com and a different internal address for   tw.mitelxxxx.com


Thanks ; )
0
 
mrmarkfuryCommented:
I'm pretty sure you can get granular with conditional forwarders:
ya.mitelxxxx.com -> 1.1.1.1
tw.mitelxxxx.com -> 2.2.2.2
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
bdesmondCommented:
Correct you can granularly configure conditional forwarders in that manner whoever this is fundamentally not the solution to the OP's question (as I understand it anyway).

I would create a Primary Zone in DNS called mitelxxxx.com, and then create two A records, one called ya and one called tw and specify the IPs you want.

Thanks,
Brian Desmond
Active Directory MVP
0
 
ritztechAuthor Commented:
if I do it that way it says somethingabout reverse zone....   Thanks
0
 
bdesmondCommented:
OK so what is the message? Paste it here...

Thanks,
Brian Desmond
Active Directory MVP
0
 
Chris DentPowerShell DeveloperCommented:

Probably says that it failed to create / update the PTR record in the Reverse Lookup Zone. The box is "probably" ticked when creating the records (it remembers the last state of the box) through the GUI. If that is the case it can be ignored.

If you still need to allow access to everythingelse.mitelxxx.com then you may need to change things slightly. But if what you have now is working then it can stay.

Chris
0
 
ritztechAuthor Commented:
well odd thing is it was working for a little bit then just died ..... SO i changed my dns server because it had primary 192.168.11.1 as my server and the 204.xx.xx.xx as the secondary when i just allowed my prmary and not the secondary it wouldnt even let me get out on the internet so i think there is something wrong with my dns server the dhcp on it hands out 2 dns

Primary       192.168.11.1
Secondary  204.xx.xx.xx

so im thinking cant connect the first one so go to the secondary..


Thanks; )
0
 
Chris DentPowerShell DeveloperCommented:

Is this an Active Directory domain? If it is you should really only have your clients (and servers) use DNS servers that can answer for the Active Directory domain name. If you don't you are likely to run into authentication issues and general problems finding the domain.

If that is the case, and 11.1 is your server then we need to fix it. A few things spring to mind immediately:

1. In the DNS Console, Server Properties, Check Forwarders. If you're forwarding to servers that no longer respond then 11.1 will not be able to resolve public names.

2. Check your Firewall. If your DNS server cannot resolve public names it's possible that this is due to firewall rules preventing it gaining external access. At least outbound UDP Port 53 needs to be open. Ideally TCP Port 53 should also be open (used when a response overflows the UDP limit).

3. If it's not using Forwarders, and the Firewall allows everything, check the Root Hints tab. To resolve public names it should contain entries for a.root-servers.net to m.root-servers.net (13 of them in all).

Chris
0

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

  • 3
  • 2
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now