Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

DNS/Pointer Record for access to Internal Site

Posted on 2014-04-10
4
602 Views
Last Modified: 2014-04-11
Hello Experts,

I'm assisting a non-profit with their website. They recently replaced their firewall/modem, which I installed. I'd thought I had set everything up correctly but there is one issue that I can't nail down.

Their website is accessible internally and externally. They have a document database, linked on the website, which is meant to only be accessible internally. Currently the database is only accessible if you are on the same subnet as the server. We need the database to be accessible to all internal IPs.
 
I'm thinking we need a static DNS entry or PTR record on the firewall, but I'm not sure what to point it to. I have the server IP address. The link to the database is www.website.org/newspapers. I have some suspicion that the DNS entry may be archive.website.org but I'm not certain. I don't have access to the old firewall. Do you have any thoughts on how I might nail this down?
0
Comment
Question by:grindsmygeaqrs
4 Comments
 
LVL 36

Expert Comment

by:Mahesh
ID: 39992541
In your web site configuration find out www.website.org/newspapers actually points to which server (I mean check entry on web server to which server hostname its pointing for database)
make sure Host(A) record of that server is registered in DNS and then check if its resolved from another subnets

I suspect that within same VLAN its accessible because of NetBIOS broadcast is happening within same VLAN and its getting blocked between multiple VLANS

Also consider entering FQDN of data base server in web server to get it resolved from any where internally

Mahesh.
0
 
LVL 17

Accepted Solution

by:
pergr earned 500 total points
ID: 39993504
If it works from the same subnet, it should not be a DNS issues.

If the database is on a separate machine (virtual or physical) then perhaps the machine is missing the network configuration for "default gateway", which is needed to get to a different subnet.

Alternatively, the new firewall needs a rule that allows this traffic.
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39993812
I agree with pergr... most likely a route issue.

If the server is using the internet router as its default gateway it might not be able to see subnets via another internal router.  For that you'd need to add a static route on the server.
0
 

Author Closing Comment

by:grindsmygeaqrs
ID: 39994510
You sir we're correct! Firewall is unix and I missed the access restrictions. Thank you!
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Remote access problem to camera controller 9 37
Domain Service Not Responding 14 30
nested esxi, NIC issues 1 32
NSLOOKUP Question 7 19
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question