Solved

unable to access external website from inside corporate network

Posted on 2013-10-29
8
727 Views
Last Modified: 2013-10-30
Running Windows Server 2008 R2 with AD.  Website is externally hosted.  Everything was working fine until our external nameservers were deleted.  We recreated them and reentered all the DNS records.  External devices can access the website with no problem.  Devices inside our network can't find the website.  Pinging from any internal computer resolves to the correct IP, but the website still will not come up.  No other changes to our internal DNS server, firewall have been made.  Any help at all would be appreciated!
0
Comment
Question by:smoakin
  • 4
  • 3
8 Comments
 
LVL 20

Expert Comment

by:carlmd
ID: 39608180
When you ping from LAN do you get a response? If so, run a tracert and see where it stops.

Can you access the website using the ip (http://x.x.x.x) instead of the URL?
0
 

Author Comment

by:smoakin
ID: 39608193
I ran a tracert from both inside and outside the LAN to the website URL.  Both were almost identical except the tracert from inside the LAN timed out at the end.  The external tracert had the final hop to the web site IP.

Trying to access the website from inside the LAN using the IP address fails in the same way.  Trying to access the website from outside the LAN brings up a default error page, presumably from the hosting server.
0
 
LVL 20

Expert Comment

by:carlmd
ID: 39608206
If this is a public web site can you share the URL?

When you try to access the site are you using a URL like http://www.mysite.com or http://mysite.com.

If you do an nslookup on the URL, I assume it does not resolve, correct?

Try "telnet URL 80"
hit a few characters and carriage returns.
Do you get a response something like...

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 29 Oct 2013 10:09:58 GMT
Connection: close

Try the same using the ip address.
0
 

Author Comment

by:smoakin
ID: 39608242
I hope you don't mind but I would rather stay under the radar on the website URL.

I've tried both www.mysite.com and mysite.com.  Both fail inside and both succeed outside the LAN.

nslookup on the URL is successful from both inside and outside the LAN.

telnet to the website URL failed from both inside and outside the LAN

telnet to the website ip address from inside the LAN failed to connect
telnet to the website ip address from outside the LAN was a little different but also eventually failed.
0
Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

 
LVL 20

Accepted Solution

by:
carlmd earned 500 total points
ID: 39608281
Given that the site works everywhere but on your LAN I see only a few possibilities...

1. Your firewall is blocking access to this site. Can you plug a laptop directly into your router (outside firewall) and try the site from there?

2. There is something at the site blocking your WAN ip address from accessing it. You say the site is hosted outside, have you asked the hosting company to check your attempted access.

Try accessing the site using a proxy server to see is that works...

Use either:

https://www.kproxy.com/

or

http://hidemyass.com/
0
 
LVL 19

Expert Comment

by:Miguel Angel Perez Muñoz
ID: 39608292
This external website is on a DMZ in your LAN? maybe you have a routing problem between LAN and DMZ.
0
 

Author Comment

by:smoakin
ID: 39608413
I will have to try these options when I get to the office tomorrow.

The website is not on a DMZ.
0
 

Author Closing Comment

by:smoakin
ID: 39610924
As it turned out, it was a problem with the website hosting company.  They made a correction on their end and the problem was resolved.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now