Solved

unable to access external website from internal AD domain

Posted on 2013-01-27
22
1,231 Views
Last Modified: 2013-12-02
I have a website configured using Wordpress (www.wordpress.com) as the provider and it is accessible just fine from outside the network.  However, when users try to access it at the office from the internal network, they're unable to access the website.  

For example, the domain name is ABC.COM and the website address is www.abc.com .   I don't have an A record created on the internal DNS zone because this simply won't work.  Wordpress doesn't allow for this simple functionality as they do not have a single IP address for me to point to.  They do not allow mapping of the "WWW" subdomain.  See here  http://en.support.wordpress.com/domains/map-subdomain/  

The reason this works externally is because I'm using Wordpress DNS servers (i.e. ns1.wordpress.com) for name resolution.  I'm not sure that I can do the same inside the office, I'm afraid it will interfere with other internal name resolutions that are working just fine.

So the bottom line is that I need to figure out how to be able to query the Wordpress DNS servers just for the WWW record.
0
Comment
Question by:Florescu
  • 11
  • 9
  • 2
22 Comments
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38825686
You should be able to configure a CName within DNS that points www.YourDomain.com to YourName.wordpress.com however you will have to buy an "upgrade", I belive $10/year
http://en.support.wordpress.com/domains/map-existing-domain/
0
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 38825870
add forwarders to your dns.. i.e. 8.8.8.8
0
 

Author Comment

by:Florescu
ID: 38826995
I tried configuring a CNAME record but that didn't work because Wordpress strips the WWW from the name.  

I already purchased the domain mapping for $13/year.  I had to do that in order to be able to access "www.mydomain.com" in the first place.  

I also tried forwarders, still not working.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38827106
Sorry, I missed where it is working externally, so you must already have the CName record in place with whomever manages your public DNS.

Where you have SBS, there should be no need to configure anything internally if www.YourDomain.com works outside of the LAN.  
This assumes internally you are using the default yourdomain.local, and you have not added a forward lookup zone for yourdomain.com  
SBS would have created a default forward lookup zone for remote.yourdomain.com  which is OK.  
If this is the case all DNS queries for anything but remote.yourdomain.com should be forwarded to the internet based DNS servers, the same as for any remote user.
I have this exact config, and it works fine.

Might you have an internal yourdomain.com forward lookup zone in place on the SBS?  If so we will need to configure or remove it.  (do not remove remote.yourdomain.com or what ever you use for external connections to the SBS)
0
 

Author Comment

by:Florescu
ID: 38827395
The domain name is the same internally and externally.  I do not use .local
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38827580
Ah, that is the problem.  Microsoft discourages using the same, and it is definitely not a default SBS configuration.  It causes many name resolution issues such as this.

I will see if I can replicate and resolve later today on a VM and post specific instructions.  It requires configuring Split DNS.

The following outlines proper DNS configuration briefly, but it suggests an alternative to a different DNS suffix is using a sub-domain, however one of the limitations of SBS is it does not support sub/child domains, thus the importance of using .local internally.  
http://support.microsoft.com/kb/254680Ah, that is the problem.  Microsoft discourages using the same, and it is definitely not a default SBS configuration.  It causes many name resolution issues such as this.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38827828
Seems to work for me:
I added to the SBS DNS a forward Lookup Zone MyDomain.com which this should have replicated your configuration of having internal DNS manage the public DNS name.
I then tested my Wordpress site  www.MyDomain.com  and it failed as expected, because the SBS was now handling DNS for that domain (and suffix) but had no matching records.

I then added a CName record www pointing to my "real" Wordpress name, as specified in their instructions MySite.wordpress.com  and it resolved and connected without issue.

Word press will only let you do so to the route of the website, not a page such as  MySite.wordpress.com/home  That would have to be done with a "web hop"/redirect which I know of no way of doing with internal DNS.

Keep in mind:
It needs to be a CName record, not a Host record
The alias is just   www
And the FQDN target has to be your real Wordpress name  MySite.wordpress.com
0
 

Author Comment

by:Florescu
ID: 38828827
I did create a CNAME record and it is just WWW.  

I configured it to point to mydomain.wordpress.com  

Here's what I think is happening:

1. I type in www.mydomain.com
2. Request gets redirected to "mydomain.wordpress.com"
3. Request reaches the Wordpress website and that gets redirected again to "www.mydomain.com" because that's configured as My Primary domain on Wordpress.
4. Wordpress strips out the WWW
5. My browser now shows MYDOMAIN.COM in the address bar
6. My PC on the internal network knows that "mydomain.com" is found locally and doesn't know that it should go out to the Wordpress servers.

I looked in the Domains section on Wordpress and there are two things configured in there:

Mydomain.com  <-- primary domain
mydomain.wordpress.com <-- default domain that gets created by Wordpress
0
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 38828922
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38828959
Thanks ve3ofa.  Seems I sort of messed up that post by duplicating later part and not having a space after the URL.  Correct URL is:

http://support.microsoft.com/kb/254680
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38828991
>>"I looked in the Domains section on Wordpress and there are two things configured in there:
Mydomain.com  <-- primary domain
mydomain.wordpress.com <-- default domain that gets created by Wordpress"

I suspect the issue is you should have:
www.Mydomain.com  <-- primary domain
mydomain.wordpress.com <-- default domain that gets created by Wordpress"

This is how mine is configured.  Wordpress only allows redirects (aliases) to the root domain name.
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 

Author Comment

by:Florescu
ID: 38836262
Not quite sure how to change this to just say "WWW.MYDOMAIN.COM" because it currently just says "MYDOMAIN.COM" and then I created A records that are needed for other purposes.  (i.e. remoting in and email).
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38836319
Who manages public DNS, Wordpress or a 3rd party registrar?

Normally you just change the wordpress site from mydomain.com to www.mydomain.com and the registrar holds your various A records and a CName record pointing www.mydomain to mywordpresssite.mydomain.com

The registrar may also have a default "*" record that points mydomain.com to www.mydomain.com but to the best of my knowledge SBS will never be able to resolve mydomain.com to anything external where you use the same domain suffix internally and externally.

By the way you cannot change the Domain suffix on any SBS without completely rebuilding the server and domain from scratch.
0
 

Author Comment

by:Florescu
ID: 38849355
Wordpress manages public DNS.  I had to do it this way to get the WWW record to work right because Wordpress will not map the "www" subdomain unless you use their DNS servers.

I do believe there's a default "*" record that points mydomain.com to www.mydomain.com.  In other words, I type in "www.mydomain.com" but Wordpress strips the www and only shows "mydomain.com" in the address bar.

So what you're saying is to have Network Solutions manage the DNS records and then create a CNAME record that points www.mydomain.com to "something.wordpress.com" ??
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38855140
I see your dilemma.  Where Wordpress is hosting your DNS and they will not map www, which of course is complicated by your LAN using the same domain suffix.

Currently I have a 3rd party managing DNS (DynDNS.com) and Wordpress is set up to host/map a sub-domain blog.lan-tech.ca
To deal with www I have a redirect with DynDNS that points www.lan-tech.ca to  blog.lan-tech.ca/home
I was not aware until now that they will not allow www to be used as a subdomain.

Your primary problem is having the internal domain suffix the same as the public, but that cannot be changed.
0
 

Author Comment

by:Florescu
ID: 38899306
Sorry for the delayed response, I've been out sick for the last few days.  

I decided to just use the website http://domain.wordpress.com so I moved the public DNS hosting back to Network Solutions.  I then created a CNAME record for "www.domain.com" and the redirection is working ok from the outside.

I created the same CNAME record on the inside but it's not redirecting correctly.  Somehow it still points to the local server instead of redirecting to http://domain.wordpress.com  

I've tried to flush the DNS cache, reboot the server but it's still not redirecting.

What do you suggest I do?
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38902141
The cname record should point www to domain.wordpress.com  without the http://  and clear your browser's cache as well as flushing DNS and see if it works.  It should.
0
 

Author Comment

by:Florescu
ID: 38902161
Yes, I tried that.  Still not working.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38902676
Very odd I was able to successfully duplicate on two virtual machines, however there was a difference, though I doubt it would make a difference.

Cname records:
blog  =>  WPdomain.wordpress.com
www  =>  WPdomain.wordpress.com\home
Just due to blog having been set up long before www.
0
 

Accepted Solution

by:
Florescu earned 0 total points
ID: 39064114
I gave up on trying to get this to work properly.  I may have to host the Wordpress website myself or just have people go directly to the URL when they're at the office.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 39064118
Sorry to hear you were not able to resolve.
--Rob
0
 

Author Closing Comment

by:Florescu
ID: 39196300
I gave up on trying to get this to work properly.  I may have to host the Wordpress website myself or just have people go directly to the URL when they're at the office.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

I've written instructions for one router type, but this principle may be useful for others of the same brand and even other brands of router. Problem: I had an issue especially with mobile devices that refused to use DNS information supplied via…
Resolve DNS query failed errors for Exchange
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now