Solved

Unable to connect to hosted FQDN with public IP from LAN

Posted on 2009-05-03
3
887 Views
Last Modified: 2013-11-16
I have recently setup an inhouse e-mail server (Kerio) on XP Pro SP3. Network is a P2P with a Watchguard Firebox SOHO6 and Qwest DSL M1000 in bridged mode with static IP. Mx is configured correctly and appears to working fine. DNS addresses are Qwest ISP for primary and secondary.

Prolem is that I can access network from outside using FQDN and IP but not from inside.

However I can't connect using public IP with ping, tracert, HTTP or IMAP on the inside.
Can connect using internal private IP.
Have disabled firewalls and used host file to no effect.

This is necessary inorder to allow laptop to connect to the e-mail server while off the internal network with changing host files or Ip settings.

I'd prefer to not setup an internal DNS server (BIND, etc.), thoughts?
0
Comment
Question by:mountainandtown
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 7

Accepted Solution

by:
blue-screen earned 500 total points
ID: 24291270
You either need to set up an internal DNS or the Watchguard need to be configured to alter the incoming DNS replies.  Cisco IOS and ASA can both do this, but I don't know about the Watchguard.  Other than that, you'd need an internal DNS server.

Try setting the DNS server to point to the Watchguard.  If it runs a proxy DNS service, it might be smart enough to manipulate replies destined to addresses that it handles, even if it won't manipulate transit DNS packets.

.



0
 

Author Closing Comment

by:mountainandtown
ID: 31577356
Thanks, looks like I do need to setup a DNS server on the XP box. Any suggestions on a basic DNS server?
0
 
LVL 7

Expert Comment

by:blue-screen
ID: 24297762
I have never set up a DNS server on an XP box, but Google seems to show a number of choices.

If you can get a DNS translating firewall, that would be an easier choice.  I think you can even do that with DD-WRT on a number of home router platforms like the Linksys WRT54G.
0

Featured Post

Defend Your Organization from The Greatest Threats

Looking to fill the gaps in your security? Bring together information from the network, endpoint and threat intelligence feeds to really see what's happening in your organization. Join the WatchGuardians in their adventures fighting cyber crime!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question