DNS Forward lookup to IP and port number

I searched quite a bit and this doesn't seem possible, but I thought I would ask here and describe what I am trying to accomplish. I have a couple of servers that our users access through a web interface. Externally, I have setup a domain forward to point to our external IP and the port number the service runs on so they don't have to remember an IP address.

Internally, I have to type in the internal IP address and port number to access the server, but I would like to use our internal domain name so that users can easily access the same device while on the LAN as well. i.e. server.domain.com instead of https://192.168.1.24:7226

I am running a 2008 R2 server. Is there anyway to use a name rather than IP address internally for those servers?
JJ BuckinghamAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Jeremy WeisingerSenior Network Consultant / EngineerCommented:
DNS won't do this for you but you do have a couple options.

1. Setup a website on the default port that does a permanent redirect to the site
2. Use a device (like your firewall) to do the port translation. So internally you would give the firewall an additional internal ip, have the DNS record point to a the ip address, then to a static PAT to the internal address and port number for the site.

This does require that the firewall be configured (and have the ability) to allow hairpining (or tromboning, or whatever you like to call it) of the traffic.
0
Dan CraciunIT ConsultantCommented:
Yes, you can.

1. Configure your router to use hairpin NAT and the users will be able to use the same address when inside and outside your LAN.
2. Use Group Policy to add the site to the hosts files in the workstations. Will only work if those workstations are always on your LAN. If you have laptops that the employees take outside your LAN, then your site will no longer work for them.

HTH,
Dan
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Will SzymkowskiSenior Solution ArchitectCommented:
All you should have to do in order to connect to this interface using the external name for internal users is Configure Split DNS for your External Facing domain on internal DNS servers. Once you have created the new zone you create an A (host) record pointing to the internal IP address of the URL.

This allows the users to access the Website internally and externally with the same name.

Will.
0
Jeremy WeisingerSenior Network Consultant / EngineerCommented:
All you should have to do in order to connect to this interface using the external name for internal users is Configure Split DNS for your External Facing domain on internal DNS servers.
That would work except for the fact that the site uses a non-default port number. That's why a redirect or a PAT is required.
0
JJ BuckinghamAuthor Commented:
Thank you. This was very helpful.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.