Solved

DNS www routing issues

Posted on 2011-09-12
16
217 Views
Last Modified: 2012-08-14
I'm having an issue accessing an external website.  The domain for the site is the same as the Windows domain. There was alread a www host setup in the forward lookup zones within DNS.  The site has recently traded hosts so I updated the www host to point to the new IP.  The problem is now anyone who trys to access the external site when they type www.domain.com within any browser they get an under construction site.  When I try to access the site on the DC itself it brings up a login page and the address changes to http://domain.com/localstart.asp which tells me that its pointing back to the 2000 AD domain controller.  I can access this site outside of this domain no problem.  I'm pretty sure its a DNS issue but I don't know what else to check.

When I ping the site it resolves the correct IP.

And when I tracert the site it resolves the correct IP and routes correctly to the site.

I'm stumped.
0
Comment
Question by:Fveng
  • 12
  • 4
16 Comments
 
LVL 8

Expert Comment

by:ActiveDirectoryman
Comment Utility


have users been able to access this site before ?

0
 

Author Comment

by:Fveng
Comment Utility
The site has recently been updated and moved to a new hosting service.  Actually the site wasn't updated but a whole new site was created and I believe whoever is created the site is now hosting it.  They could access the old site no problem.  When the old site was created I remember having to add a host in the DNS forwarders to point to the IP of the website.  I assumed when it changed hosts all I would need to do was edit that to point to the new IP.

I've also stopped/started DNS.  Rebooted server.  Ran updates.

I've looked at the local hosts file too...nothing.
0
 
LVL 8

Accepted Solution

by:
ActiveDirectoryman earned 500 total points
Comment Utility


you have conditional forwarders setup?

what ip address is listed in the forwarder?

are you  saying that the forwarder is pointed to the correct ip address?

there a few reasons dns resolution would fail:

-forwarder is not setup correctly to forward queries to a particular domain. since a conditional forwarder is static you update it manually if the server or servers addresses have changed. This is why it is better to use  stub zones so you don't have to deal with this.
-dns server configuration problem
-host file on the client is not setup correctly or has a static address configured to point a website with a new updated ip address
-a negative query has been cached on the client. (if this is the case you can do a ipconfig /flushdns and then ipconfig /registerdns)


0
 

Author Comment

by:Fveng
Comment Utility
I don't believe I have conditional forwarding setup.  Just a host a record in DNS.

I was using opendns for a while but removed that to see if that was causing a problem but that change didn't resolve the issue.

 DNS Host A settings
0
 

Author Comment

by:Fveng
Comment Utility
0
 

Author Comment

by:Fveng
Comment Utility
-forwarder is not setup correctly to forward queries to a particular domain. since a conditional forwarder is static you update it manually if the server or servers addresses have changed. This is why it is better to use  stub zones so you don't have to deal with this.  
It was static and I just manually changed it to the correct verified IP address.

-dns server configuration problem
Nothing else (besides opendns forwarders) was changed but the www host properties on the DNS server to the new IP address.  Everything else is functioning correctly

-host file on the client is not setup correctly or has a static address configured to point a website with a new updated ip address
I checked the host file on the DNS server. No settings other than the normal default host file.  I actually edited the hosts file on the DNS server to see if that would do anything but no...that didn't work.
 
-a negative query has been cached on the client. (if this is the case you can do a ipconfig /flushdns and then ipconfig /registerdns)
I've done both flush and register and nothing.

I'm boggled.
0
 
LVL 8

Expert Comment

by:ActiveDirectoryman
Comment Utility


what is the name of the external site. I would like to test it myself on my end
0
 

Author Comment

by:Fveng
Comment Utility
www.exchangefinancial.com


I did just notice something.  When I tested it externally after typing the full address in my browser it changed it automatically removed the www from the address.  I'm now thinking it is more of a hosting issue than local DNS.
www-browser.png
0
Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

 
LVL 8

Expert Comment

by:ActiveDirectoryman
Comment Utility


Im not seeing any dns issues on my end.  i did a nslookup and it comes up fine with the www.    When are people getting the under construction page ? Remember that most web browers also have a dns cache which can be cleared by closing the browser.  
0
 

Author Comment

by:Fveng
Comment Utility
They get the default under construction page.

I do get a slightly odd nslookup but it still resolves the correct IP.
under-construction.png
nslookup.png
0
 

Author Comment

by:Fveng
Comment Utility
10.10.10.20 is the DC where the domain is exchangefinancial.com
0
 

Author Comment

by:Fveng
Comment Utility
this is what I get when I try accessing www.exchangefinancial.com from the DC
EFC-error.png
0
 

Author Comment

by:Fveng
Comment Utility
After I hit cancel on that popup box it brings up a "You are not authorized to view this page" error and the address in the browser changes to.
http://exchangefinancial.com/localstart.asp
0
 

Author Comment

by:Fveng
Comment Utility
Well there was a reverse dns issue that I resolved but still can't access the http site.
0
 

Author Comment

by:Fveng
Comment Utility
Any more ideas?
0
 

Author Closing Comment

by:Fveng
Comment Utility
It ended up being a host issue.  They never registered the www
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

I will assume you are running a non-server version of some sort of Windows throughout this article. There are many flavors of Windows since Windows Server 2000 - 2008, XP Home & Pro, Vista Home & Pro, and Windows 7 Starter, Home, Pro, Ultimate, etc.…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now