How to resolve selected internal domain name to an external DNS

We have an outside vendor hosting our website
Our internal network has the same network name

We setup an A record in our internal DNS server to resolve to the outside IP address.

The problem is that the vendor hosting our site changes the IP address frequently and we would have to keep on changing our internal A record to resolve the correct IP address. We are tied with a contract to the hosting site (inherent issue).

How can we selectively resolve just the to the external DNS server so the correct IP address is resolved correctly everytime the hosting company changes the IP address without needing manual intervention?

Our internal DNS server is a Windows 2003 Server that has DNS forwarding enabled.

Thank You.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

You need to know which DNS servers resolve You can use nslookup to get this information.

Those should be the hosting DNS servers.

Then in your dns server you need to create a delegated zone for and assign the hosting dns servers as the dns server where this zone is delegated.

This should do the work.
Out of curiosity, where do internal clients resolve to without the A record? Do requests not get forwarded to the external DNS server without the A record? As you said, the inherent issue is that it's not a static IP. I have heard of people with setups that somehow update their records to reflect changes in dynamic addresses using home servers, I'll try to find more info on that.
sorrillo makes more sense to me on this one, I would say to take that route over the ways people run websites out of their home! Cheers.
Newly released Acronis True Image 2019

In announcing the release of the 15th Anniversary Edition of Acronis True Image 2019, the company revealed that its artificial intelligence-based anti-ransomware technology – stopped more than 200,000 ransomware attacks on 150,000 customers last year.

Is that the only domain name that goes to your Website??

If you had another DNS name that pointed to your website i.e. then you could set the alias up for www to point to that.

You have been tripped up by using the external domain name as you internal rather that yyy.local.


hkit0630Author Commented:
Thank you for your replies.

Sorillo -
  • deleted the A record (www) in my zone
  • created a new zone - and setup the appropriate Name server that is resolving this url.
  • flushed the DNS cache for all the internal DNS servers
  • nslookup for results to only the and no ip address
  • ping only gives me an error that cannot find host
What am i missing here??
nslookup for results to only the and no ip address

I don't understand what you mean. Could you post the nslookup result ? (masking domain name if you want).

You should also flush the local dns cache using ipconfig /flushdns before the ping test.
hkit0630Author Commented:
i flushed the dns cache on the DNS servers and local PC that i'm using.

i attached a screen shot of the nslookup that shows no IP address resolved and ping result

I had a similar situation sometime ago when my hosting company's DNS servers were unreliable for a period of 3 months.

I forwarded my queries to XO Communicaionns and Cogent DNS servers. Also, I set my DNS cache for quick expiration. It did overwork my DNS servers, but worked like a charm for the short period that I needed it to work.
hkit0630Author Commented:

I change the DNS cache expiration but still not getting any resolution for the
You never will get this to resolve as you are asking because your internal domain name is the same as your external name. The only way to do it is point the alias of www to a different external domain name so your internal users can view the webpage.

If your IP was static then you could put this in DNS but as you have stated your ISP keeps changing this so it wont last long. You want to eliminate the need for you to change the IP address.

I don't believe you can achieve this using internal methods to resolution your are seeking.
I think andrewc2189 already asked this but maybe in a different way:

If you remove from your DNS completely, what happens? I think the DNS by default should look up the external IP address from "the Internet at large" once it does not find it locally.  The address you have setup should still resolve to the internal address but the should resolve to the external address I believe unless you run into issues with interfering with your ability to resolve externally.
Why would a DNS Server go external if it believes it is the root of that domain? It wouldn't!!

DNS procedure as I believe it happens:

1. User in xxx.local needs to resolve the web address
2. His local server is and the users request has been checked against the local database with no joy.
3. then contacts the external DNS and says where is the root of .com. which it is given a response.
4. That response is used and the root of is then contacted and asked where www should be resolved to. This then gives the IP address to the server and then to the client hence you get the DNS CACHE on the server if you look at Windows DNS MMC.

In this scenario.

1. User is in and wants
2. His local server is and the local database is check and a response is given to the old web server that was manually put in there which is wrong now due to the ISP. Error 404 displayed.


His local server checks the DNS database and says " Sorry no entry in here for www" error 404 displayed for the user. There would be no forward as it is the root of

Hope this makes sense.

hkit0630Author Commented:
any other options?

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
hkit0630Author Commented:
no viable solution
Scrap your internal domain and set it up correctly. Lots of work though dependent on your architecture.

hkit0630Author Commented:
i almost died laughing..

thanks for making my friday !!!
I might be able to explain why my solution did not work on your case. I must admit I never used myself, it was just theoretical.

Anyways, I tested some domains to see what happened.

Using as a testing domain did not work as expected. I believe this is what went wrong:      canonical name = points to the domain itself which will not have the correct resolution as it can not be delegated.

Using as a testing domain did work as expected. That's why:
Address: does not point anywhere else, it just returns the IP.

Your case might be like, you can confirm it with nslookup ans see if it just resolves to an ip or to the domain without the www.

Anyways, this solution did not solve your problem so this comment is not an objection, just a clarification.

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.