• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 151
  • Last Modified:

SBS2011 DNS for external FQDN

On our LAN we have:
a) PDC @
b) Old TS
c) New TS

We use remote.ourdomain.com.au to access the old TS which worked well for both internal & external clients.

I wish to decommission the old TS and commission the new TS. Updated firewall to fwd port 3389 from to, tested and works for me.

Problem: Now when internal users RDP to remote.ourdomain.com.au they go to the PDC?

I have checked the SBS DNS and under Forward Lookup Zones there is an entry for remote.ourdomain.com.au which has 3 entries:
1) SOA => pdc.ourdomain.local
2) NS => pdc.ourdomain.local
3) A =>

a) Does the Forward Lookup Zone "remote.ourdomain.com.au" direct internal traffic to the A record?
b) To direct this traffic to the new TS do I need to only change the A record to
c) Why did it work with the old TS @ and now it points to
Ethan Darwin
Ethan Darwin
  • 3
  • 2
2 Solutions
Sajid Shaik MSr. System AdminCommented:
did u created the forward lookup for remote.ourdomain.com.au. pointing to new IP ?

if not just create this which is enough for internal users to point to the server.

all the best
Ethan DarwinAuthor Commented:
Hi and thank you for the help. Can you explain in more details please.
Sajid Shaik MSr. System AdminCommented:
Local users when request for remote.ourdomain.com.au access the request will goes to the DNS obviously, when the DNS don't find the records ..then if the domain is having external DNS forwarders and remote.ourdomain.com.au this domain name is hosted on public DNS it should rout to public IP.

Here it seems your new local IP either created record in forward or reverse lookup zones.., or it's reaching to it's gateway...I.e your DNS.

Any how in both ways... Just create a forward lookup zone on the DNS with remote.ourdomain.com.au point to,

Delete any existing records on DNS forremote.ourdomain.com.au pointing to your old IP,  scavange stale records,

 flush DNS at server as well as client

That's it.

All the best
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

David AtkinTechnical DirectorCommented:
Are you using the SBS as a Remote Desktop Gateway?  If so you may need to alter RDP Icon so that it specifies the new Terminal Server.
Ethan DarwinAuthor Commented:
I would have thought all I need to do is change the "A" record for the forward lookup zone "remote.ourdomain.com.au" to point to the new server.

Do I check "Update associated PTR record" ?

Out of interest where is this PTR record stored?
Sajid Shaik MSr. System AdminCommented:
ptr refers to reverse DNS record, in your case u don't need this, if u hosted your public domain name on external public domains.

if it's internal then u have to create reverse lookup zone sorry same subnet, after while creating A record just check box create PTR will create reverse dns record, or else u can create it manually, or else clik existing A record at bottom unchecked and check the PTR check box also works the same way...

all the best
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Managed Security Services Webinar - March 15

Selecting the right managed security services platform to grow your business can be a huge undertaking. Join WatchGuard and Frost & Sullivan in an upcoming webinar as we dive into the key elements of selecting a vendor platform and partnership to fuel a successful MSSP business.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now