Unable to Access Forwarded Website

cnptechnologies
cnptechnologies used Ask the Experts™
on
"Forwarded" domain unreachable. Users get "Page Can't Be Displayed" when trying to access website forwarded using GoDaddy to another domain. forward is a "permanent (301)" and set for "forward only" (No Masking). SonicWALL firewall with all Security Services disabled still cannot access. Other sites with similar FW can access site successfully.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
David FavorFractional CTO
Distinguished Expert 2018

Commented:
Provide your redirect source + target for testing.

Tip: Never, ever, ever use a 301 for this, as 301s cache in visitor browsers forever, so if you must change the redirect target, then previous visitors will never see your change, creating many problems.

Tip: Remove any hardware like SonicWall. Get your redirect working correctly with no hardware, then you can always add in hardware later. This will tell you if there's a hardware problem or actual site config problem.

Author

Commented:
Thanks for the tip. I've set it back to a "temporary" (302), but that was not working before which is why i changed it. I don't have the code as I'm redirecting to a domain hosted elsewhere. Essentially i'm forwarding "easydomain.com to ConfusingDomain/subdir/subdir to make it easier for the end user.
Top Expert 2016

Commented:
why don't you do it in DNS
cname easydomain.com  confusingdomain.xxx
How to Generate Services Revenue the Easiest Way

This Tuesday! Learn key insights about modern cyber protection services & gain practical strategies to skyrocket business:

- What it takes to build a cloud service portfolio
- How to determine which services will help your unique business grow
- Various use-cases and examples

Author

Commented:
Thanks, but I don't think a CNAME will support a sub-directory of the target domain.
Top Expert 2016

Commented:
in your webserver you add the records and the virtual directory

Author

Commented:
thanks for your response. We do not manage the webservers, only the internal network. Domain is using GoDaddy forwarding.
Opened a case with SonicWALL. Apparently the site to which the domain is being forwarded is not RFC 6528 compliant and the built-in security of the firewall prevents access even when the "security services" are disabled. Unchecking the "Enable TCP sequence number randomization" box on the diag page will grant access to the site, but also opens you up for MITM attacks. Funny part is that other sites using SonicWALLs with the box checked are able to access the site just fine. Maybe the feature is limited to certain models?
David FavorFractional CTO
Distinguished Expert 2018

Commented:
Aside: I wrestled with hardware firewalls for years.

Once I switched over to just using iptables + Tarpit Logic never had a wasted minute since, wrestling with oddball firewall oddities.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial