Problem with DNS server

Dear Experts, please help to solve our scenario:
- Normally, we use google public DNS (8.8.8.8) for our LAN users, then they can go to our website (let's say in IP: A.B.C.D - www.website.com) properly

- When we change the DNS of LAN users to our local DNS (the same domain - website.com), they could not go to that website anymore although I specified its DNS record (www) in the DNS server.

Do you have any idea please?
LVL 5
DP230Network AdministratorAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Pushpakumara MahagamageVPCommented:
What's the ping www.website.com when your PC in local DNS

check nslookup also
1
DP230Network AdministratorAuthor Commented:
Hi, yes we can ping it, it showed the public IP address of web server (A.B.C.D); when we check "nslookup" www.website.com, it also showed the correct public IP; but when access website via web browser, we got connection_refuse error
0
Pushpakumara MahagamageVPCommented:
Do you use SSL imean https,  Have you checked from another browser. I mean if you use chrome, then check it from Firefox and IE
0
How the Cloud Can Help You as an MSSP

Today, every Managed Security Service Provider (MSSP) needs a platform to deliver effective and efficient security-as-a-service to their customers. Scale, elasticity and profitability are a few of the many features that a Cloud platform offers. Register today to learn more!

DP230Network AdministratorAuthor Commented:
No, we use normal HTTP, also tried with other browsers but NO luck :(
0
Pushpakumara MahagamageVPCommented:
connection refused error prompt if you are going to access wrong destination

it seems that is not a DNS issue.  normally connection refused error means you are accessing somewhere else instead of correct destination.

is your NT Domain is also website.com ?

add a host entry  and see whether web site is working.

a.b.c.e     www.website.com
C:\Windows\System32\drivers\etc\hosts
2
Shaun VermaakTechnical SpecialistCommented:
Just add the same records that you have in public DNS zone to local DNS zone such as the website A record
1
DP230Network AdministratorAuthor Commented:
Hi, yes our NT domain also is website.com. Also added entry in hosts file but no luck

- In case of DNS local:
When we issued nslookup "website.com" -> return local DNS server
issued nslookup "www.website.com" -> return public IP of web server (correct)

- In case of Google DNS
both return correct public IP of web server

we have to maintain the DNS local, because we are in Active directory environment
0
Michael LinkInfrastructure EngineerCommented:
Make sure your DNS forwarders are resolving correctly and you have redundancy there - 4 addresses recommended, and have them opposite between the two providers.

Make sure there is nothing i.e. proxy or firewall blocking the connection.

I take it a tracert passes through fine all hops okay?

Can you get to the website from the DNS server itself?

Have you flushed the DNS on the client you are connecting with?
0
Pushpakumara MahagamageVPCommented:
Do you have a PC which is not belongs to your domain.  so, try from that PC with your local DNS.  

by the way do you use a proxy server for your LAN internet access.
0
DP230Network AdministratorAuthor Commented:
Hi,

Make sure there is nothing i.e. proxy or firewall blocking the connection --> Nothing is blocking the connection

I take it a tracert passes through fine all hops okay? --> Yes , we can trace route to that web server

Can you get to the website from the DNS server itself? --> No I could not

Have you flushed the DNS on the client you are connecting with? --> Yes, I did it but still could not access web server

--------------
Do you have a PC which is not belongs to your domain.  so, try from that PC with your local DNS.  --> Yes I tried but still no luch with Local DNS

by the way do you use a proxy server for your LAN internet access. --> No  I use Cisco router, all LAN users was NAT through public WAN interface
0
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
Here's a trick to use.

1) Go back to using Google's public DNS servers for now.

2) Debug your local lookups using nslookup forcing lookups against your local DNS.

This way you can debug at your leisure, using Pushpakumara's suggestions + DNS will continue working for all your users, till you get local DNS resolution working.

I also suggest you begin posting actual lookups + nslookup output.

Trying to guess about your real commands will likely mean everyone's guessing wrong.

Better to post actual data... again... following Pushpakumara's suggestions.
1
DP230Network AdministratorAuthor Commented:
Hi, Please see the attached pictures for more details

This is a normall PC with Google DNS
Normal_PC_GoogleDNS.JPG
This is a Domain_PC with LocalDNS
Domain_PC_LocalDNS.JPG
0
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
Tough to do with edited data.

Best to use real data, no edits.
0
DP230Network AdministratorAuthor Commented:
I could not disclosure our public IP address and domains;
0
DP230Network AdministratorAuthor Commented:
Is there any update please? if we change the DNS settings of LAN users to use Google DNS, can their PCs contact with Domain controller (which has the same domain with website) anymore?
0
Shaun VermaakTechnical SpecialistCommented:
No, PCs will not wee domain from Google DNS.

Add a www A record in the YOURDOMAIN.COM zone
Configure website to redirect YOURDOMAIN.COM to www.YOURDOMAIN.COM
Instruct users to open website as www.YOURDOMAIN.COM
0
Pushpakumara MahagamageVPCommented:
I found the issue

check your address bar on your browser with google dns

it redirect www.yourdomain.com to yourdomain.com.... when you are on google dns ypurdomain.com is also pointing to public ip and your site is loading. i mean web site is working.


but when you are on local dns yourdomain.com is pointing your DC not the web server public ip.

you have to change your website to not to redirect www.yourdomain.com to yourdomain.com then you can use local dns


to check that just add host entry. and remove that host entry after website test.

PublicIP    rootdomain

119...........82 [your web server public ip]           b........m.com [yourdomain.com]

Let me know if you have any concern
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Google

From novice to tech pro — start learning today.