Solved

New DNS server blocking website with same address name as domain

Posted on 2013-12-17
9
362 Views
Last Modified: 2013-12-21
Hoping someone can help.  

I just recently took SBS2012 off the network.  I replaced with Server2008 and made a domain forest of vidaliaga.com.

I then added a domain controller child to the network that housed the AD and called it hall.vidaliaga.com  Everything is trucking along...except....

Now, no one can access the website www.vidaliaga.com or thier pop 3.com email addresses.  Is it because the DNS server has the same name?  Do I need to add a rule, forwarder, etc.?

Any help whatsoever is appreciated!
0
Comment
Question by:carolinasgirl28
  • 4
  • 4
9 Comments
 
LVL 10

Expert Comment

by:George Khairallah
Comment Utility
0
 

Author Comment

by:carolinasgirl28
Comment Utility
I should have mentioned that I am not hosting our domain.  The website and email addresses are hosted by a third party.  It may be that the fact they cannot access the .com address or .com emails have nothing to do with the fact that I named our forest with the same .com   Does this still apply?
0
 
LVL 6

Expert Comment

by:smithandandersen
Comment Utility
mistake #1 was creating a routable domain. your internal domain should be .int or local or even .bob if you like
Add a www record in your dns for your website and a mx record for your mail server
0
 
LVL 10

Expert Comment

by:George Khairallah
Comment Utility
As smithandandersen mentioned, best practice usually is to create a .local or similar domain, which is not the same as your public domain.
If you are still in the beginning stages of this, consider changing that.

And yes, you are correct regarding the reason they're not able to get to the outside addresses. Again, adding a www record, and an mx record pointing to the outside addresses will help with this situation.  Currently all DNS requests for anything that used to be on your external public domain is simply either being dropped if there is no DNS entry for it, or being resolved to an internal address which will go nowhere.

If you keep this model for your domain, you just have to remember to add the appropriate entries to point to your outside addresses.

Note that this is only for your internal DNS. This problem will only exist when clients are accessing external services from within your domain. From outside, everything will still be functional, as that would be relying on your external DNS.
0
Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

 

Author Comment

by:carolinasgirl28
Comment Utility
So far I have only set the one computer to be the forest and the second computer has a child domain and users set up.  No policies, etc. have been set.  

Am I too late to change it?  Would I have to rejoin all of the users back to the new domain and transfer all of thier docs and settings again?  I'd really like this network set up correctly but I know that putting the users through another profile change is also a nightmare.  The child domain computer looks like this...

dns tree  ad tree
0
 
LVL 10

Accepted Solution

by:
George Khairallah earned 500 total points
Comment Utility
You can actually perform a domain rename operation on the domain. It's a few steps. but, by doing so, you're keeping the domain GUIDs intact, thereby, not affecting the client machine's domain memberships. You will have to reboot the machines (likely twice) for them to inherit the new domain names.

There is a detailed article to do so here:
http://www.farmahini.net/farmahini/step-by-step-guide-to-implementing-domain-rename/
and here:
http://blog.pluralsight.com/rename-active-directory-domain
0
 

Author Comment

by:carolinasgirl28
Comment Utility
So in your opinion, would you rename the forest vidaliaga.com.local or vidaliaga.local ?
0
 
LVL 10

Expert Comment

by:George Khairallah
Comment Utility
definitely vidaliaga.local that's actually best practice for internal domain names, or vidaliaga.int if you prefer.
0
 

Author Comment

by:carolinasgirl28
Comment Utility
Thank you soooo much!  I am going to get cracking on this right away!
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Join & Write a Comment

This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now