Solved

Internet or DNS issue

Posted on 2013-01-16
10
336 Views
Last Modified: 2013-01-21
I have a strange problem.

Network:
2008 R2 domain and windows 7 clients. Simple network. Switch connected to Firewall connected to ADSL router.

Problem:
Clients can ping websites but not display in browsers.

What I've tried:
Checked firewall has outbound rule for HTTP, DNS, HTTPS,
NSLOOKUP returning correct info, pings alive from firewall and clients.  
enabled DNS logging and no errors.
Flushed DNS on clients. Tried setting DNS to googles to bypass internal but no change.

...next thing to try is connect laptop onto ADSL router, configure NIC as secondary WAN IP and check connecting directly to the internet from there.

Any other suggestions to try? very weird!
0
Comment
Question by:BerryGardens
10 Comments
 
LVL 12

Expert Comment

by:kadafitcd
ID: 38782758
Have you tried turning off the Internet Security/Antivirus application on any of the computers?  It could be the culprit if it is we can troubleshoot.  Just try and disable the AV and then try to browse and let us know the result.
0
 
LVL 11

Expert Comment

by:rharland2009
ID: 38782765
It sounds as if you have some weird proxy or other info configured in your browsers.

1. Do you have the same result regardless of browser - IE, FF, Chrome, Safari, etc.?
2. I agree with your next step. It will tell if your problem exists because of the firewall, at least.
3. Make sure you have an inbound rule for http/s/dns as well.
4. From your 2008R2 box, can you directly query external DNS servers via nslookup? If so, then at least you know DNS is getting in and out of the network.
0
 
LVL 7

Expert Comment

by:hau_it
ID: 38782774
I had a similar problem last week in my home. I was able to translate web sites (although i could not ping) and my Router was sync. with DSLAM.
I called the ISP and they reset my line. After that everything was ok
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 

Author Comment

by:BerryGardens
ID: 38782804
Turned AV off and no change.

1. Regardless of any browser the same issue.
2. Will try and see....
3. Inbound rule for http, https and DNS? I'm not hosting any web servers on port 80 or 443. I have the same setup at site 2 with deny all inbound and no issues there.
4. Yes I can query other root servers for nslookup. I've tried all the usuals 2.2.2.2 and 8.8.8.8 then a couple of root servers.

Thanks for looking... I'll update shortly but if you have any other ideas. Sometimes workign solo you can miss something.
0
 

Author Comment

by:BerryGardens
ID: 38782809
I will mention BT engineer was just on site installing fibre and problems are appearing since. Hmmm like your thinking hau_it
0
 
LVL 11

Expert Comment

by:rharland2009
ID: 38782811
I meant just to verify that the incoming http/s traffic is allowed back onto your LAN.
0
 

Author Comment

by:BerryGardens
ID: 38782822
Good point yes it is.
0
 
LVL 10

Expert Comment

by:tmoore1962
ID: 38783887
Sounds like a config issue on your firewall,  Ip address gateway issue.  Verify that the firewall's public IP info is correct.
0
 

Accepted Solution

by:
BerryGardens earned 0 total points
ID: 38783911
Reset firewall to factory settings and reconfigured basically (similar to most home adsl networks) but no change. Put in a similar model with same basic setup  and worked. Thanks for all the suggestions but hardware fail grrrr!
0
 

Author Closing Comment

by:BerryGardens
ID: 38800521
Sadly no points.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question