Solved

DNS Outlook Issues

Posted on 2014-04-28
7
216 Views
Last Modified: 2014-05-01
I host exchange in house.  As I am adding outlook 2013 clients I am running into problems with DNS that I have never had before.  Outlook is trying to pull the external IP address of the exchange machine so the clients will not connect.  After a 5-10 minutes the outlook client will connect.  I have removed the external entries from DNS, however, the external addresses keep adding themselves back into dns.  Any advice to resolve this issue?
0
Comment
Question by:dcitdir
7 Comments
 
LVL 3

Accepted Solution

by:
bmurray-vb earned 500 total points
ID: 40027167
Sounds like it could be one of a few different issues.

Do you have all of your exchange virtual directories setup properly with the correct internal and external values?

Something that I always do when deploying exchange is I create an authoritative internal zone for the mail domain.

To do so, you need to first create an internal authoritative domain for yourexternaldomainname.com in your DNS server (on your domain controller, Administrative Tools -> DNS -> Forward Lookup Zones -> New Zone -> Primary Zone), and then create entries for autodiscover, www, mail, etc in this zone. Use the local IP addresses for these entries. This will become authoritative for inside of your network (and, obviously, ONLY for your internal network, as this DNS zone would not synchronize upstream).
0
 

Author Comment

by:dcitdir
ID: 40027271
I have all the entries for autodiscover, www, mail, etc in a zone already with the local ip addresses.
0
 
LVL 3

Expert Comment

by:bmurray-vb
ID: 40027325
Do you have all of your exchange virtual directories setup properly with the correct internal and external values?

If so, try to create a new profile on a workstation to see what the behavior looks like after the new profile is generated.

Start - Run - Outlook.exe /profiles   to create a new profile and see what's going on.

Check autoconfiguration and connectivity status by holding down the ctl key and right clicking on the outlook system tray icon

Also, ping the FQDN of the mail server from the local workstation to see what it is seeing as an IP address for the host.
0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40027750
You probably don't have the virtual directories setup correctly - not all of them can be done through the GUI.
Check with my article here: http://semb.ee/hostnames

Then do an Autodiscover test http://semb.ee/adt and see what is being returned to the client by Exchange. Autodiscover isn't really an optional feature and if you have the information wrong then it can try and use an external host name.

If you have the external host name in the SSL certificate then you will need a split DNS.

Of course, if you are using Exchange 2003 then Outlook 2013 isn't a supported client and all of the above is null.

Simon.
0
 
LVL 11

Expert Comment

by:hecgomrec
ID: 40029359
Sorry to say this but if you are having clients looking for your in premises exchange server outside your network by creating a new profile, this means you don't have the proper A and/or MX records or any other setup on your DNS servers.  Otherwise the client will find it without going out your LAN.

Are you able to open OWA using your "hostname" from your LAN? (https://yourmail.server.com)

Are you able to access your OWA using a phone connected to its carrier data? (not using your LAN)
0
 

Author Comment

by:dcitdir
ID: 40035242
I found the issue.  In dns somehow one of the external addresses was checked in the interfaces.  Once I unchecked the external interface everything started working properly.
0
 

Author Closing Comment

by:dcitdir
ID: 40035247
Thanks this led me in the direction of finding the issue.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now