• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 741
  • Last Modified:

SBS 2O08 Non Domain Users use DNS

Hi,

I have an issue with SBS 2008 whereby non domain users (visiting users), get DHCP allocated, but DNS does not work for them. (they are allocated the correct IP of the DC for DNS)

I have my ISP's DNS servers setup as forwarders, and it's working for domain users.

How do I set SBS to allow non domain systems access to DNS?

Thanks!
0
radiosupport
Asked:
radiosupport
  • 3
  • 2
  • 2
  • +1
1 Solution
 
Dave_ANDCommented:
As far as I am aware, there is no way to do this, when a PC connects to the network, could you do a an nslookup in a cmd window please? see what response you get?
0
 
Cliff GaliherCommented:
DNS is by default a non-authenticated protocol. Non-domain machines can make requests against the DNS server just as easily as the domain machines. If this isn't working then you likely have another issue, such as firewall rules, causing problems.
-Cliff
 
0
 
radiosupportAuthor Commented:
Thanks.. it's very strange, an NSLOOKUP resolves google.com to the correct IP, so it's the traffic that isnt being passed through the ASA 5505 for some reason! A reboot of the router seems to fix this. Any ideas??
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
Cliff GaliherCommented:
Not without taking a detailed look at your network and firewall rules, sorry.
-Cliff
 
0
 
Dave_ANDCommented:
So there is some reason for the firewall to block traffic, sadly im not a Cisco person, but with watchguard it is able to block IPs due to behaviour  like port scans, virus's etc. Is there a way to look at blocked IPs within the ASA500? Worth a look.
0
 
scraaneCommented:
How many people is your ASA5505 licenced for? If you have more that x number IP addresses accessing the internet, it will block all above your ASA limit.

Do a 'show local' on the asa to see the number of active sessions. Do a 'show ver' to see the license.
0
 
radiosupportAuthor Commented:
Thank  you. I bet this is the issue.. I can't see a "show local", I'm using ASDM 6. Any ideas?
0
 
scraaneCommented:
It is on the commandline. telnet to your asa and use the command. You can also send commandline commands through the ASDM. I think it is on the TOOLS menu.
0
 
radiosupportAuthor Commented:
Thank you. This is the issue indeed. Many thanks.
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 3
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now