DNS internal namespace same as external www -Problems

[Guest]

We have 4 Domain Controllers in a Active Directory domain environment. One Primary DNS and 3 Secondary. Our internal domain mycompany.com is the same as our external web domain www.mycompany.com which is hosted by another provider. We have been able to access this external website using www.mycompany.com for a while now, but all of a sudden once all locations are now on the internal domain, we can't access it. The external website has dynamic ip addresses for load balancing so we are unable to hard code the ip address. I removed our ISP dns servers from our DHCP handout and created a forwarder on our DNS servers to the DNS of our external ISP. Besides renaming our internal domain how can we still achieve this and connect again to the www.mycompany.com website? I have read through tons of posts regarding this issue, but can't seem to find the definitive answer. Any help is greatly appreciated. We have temporarily switched to a non-domain DNS server but it creates some internal dns issues. Thanks. Robbie

 

[Bob Lin]

Do you have RR points to the web's public ip? quoted from
http://www.chicagotech.net/
Why our web site doesn't work internally

Q: Everyone can access our web site on the Internet. But no one can access
the web site internally. Instead, we are point to our Intranet.

A: If you network domain name is the same of your web site name, you should
point the web to the web public IP. To do this, open DNS manager and create
a host. for example www.chicagotech.net=public ip.


--
For more and other information, go to http://www.ChicagoTech.net

Don't send e-mail or reply to me except you need consulting services.
Posting on MS newsgroup will benefit all readers and you may get more help.

Robert Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
http://www.ChicagoTech.net
This posting is provided "AS IS" with no warranties.

 

[Marc Reynolds [MSFT]]

Forwarders won't work because your internal DNS server is SOA for
mycompany.com so it will not forward requests for any records in this
domain. The only thing you can do is to hard code a record for "www" in your
mycompany.com zone on your internal DNS server and update the record when
the IP address changes. You may also consider getting a static IP for the
web server.

--

Thanks,
Marc Reynolds
Microsoft Technical Support

This posting is provided "AS IS" with no warranties, and confers no rights.

We have 4 Domain Controllers in a Active Directory domain environment. One

Primary DNS and 3 Secondary. Our internal domain mycompany.com is the same
as our external web domain www.mycompany.com which is hosted by another
provider. We have been able to access this external website using
www.mycompany.com for a while now, but all of a sudden once all locations
are now on the internal domain, we can't access it. The external website
has dynamic ip addresses for load balancing so we are unable to hard code
the ip address. I removed our ISP dns servers from our DHCP handout and
created a forwarder on our DNS servers to the DNS of our external ISP.
Besides renaming our internal domain how can we still achieve this and
connect again to the www.mycompany.com website? I have read through tons of
posts regarding this issue, but can't seem to find the definitive answer.
Any help is greatly appreciated. We have temporarily switched to a
non-domain DNS server but it creates some internal dns issues. Thanks.
Robbie

 

[Guest]

Thanks for the quick response Bob. How do you add a RR? Also, our external web server is hosted by another company and has multiple dynamic ip addresses so we are unable to hard code the ip address. Next, how can you add a host record with www.something.com. I am unable to add the . in our version of DNS. Thanks. Robbie

 

[Ace Fekay [MVP]]

In

Thanks for the quick response Bob. How do you add a RR? Also, our
external web server is hosted by another company and has multiple
dynamic ip addresses so we are unable to hard code the ip address.
Next, how can you add a host record with www.something.com. I am
unable to add the . in our version of DNS. Thanks. Robbie

Rt-click your zone name, select New Host Record, type in www for the name,
and give it the actual external IP address.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Jonathan de Boyne Pollard]

R> The external website has dynamic ip addresses for load balancing so
R> we are unable to hard code the ip address.

Then you need to use the second method.

<URL:http://homepages.tesco.net./~J.deBoynePollard/FGA/dns-split-horizon-common-server-names.html>

 

[Jonathan de Boyne Pollard]

R> I can't use . (periods) when creating a new host?

Yes, you can. But it's irrelevant to the task at hand.

 

[Ace Fekay [MVP]]

In

Thanks Ace. I made this change and used one of the dynamic ip
addresses. I can get in now. Only thing is how does this work when
they use dynamic ip addressing. How can I add subnet range to this?
Thanks again.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
You mean that your ISP changes their IP address for the website
occassionally? I doubt if they are using DHCP for a webserver, since it
causes resolution issues and they don't want to do that.

But if they change the IP once in awhile for whatever reason, then forget
the method I told you. Instead, rt-click your zone name, choose New
Delegation, type in www, and give it the domain name's SOA DNS servers. They
can be found by going to the registrar and see who the nameservers are on
record for the domain.
You can also:
nslookup
server 4.2.2.2
set type=ns
domain.com
And the nameservers will show up here.


Now If I misunderstood your question, can you explicitly state what you mean
by 'add subnet range to this' please?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Guest]

Thanks Ace. I will try the delegation and see. Our web hosting company uses dynamic ip addressing for their servers. From my understanding this means they use a range of ip addresses for this website. This is for failover and redundancy. Not sure exactly how this works with DNS entries. Maybe the delegation will work. Our website is www.chfindustries.com. When you look it up you get multiple records. If you try to connect via http:\\ip address you can't, but if you connect http:\\www.chfindustries.com you can. Right now, I have updated our internal DNS with one ip address. It is working now, but not sure how it will play out with the dynamic ip situation. Looks like it should continue fine. We will just monitor the addresses in case they add or remove. Thanks for the help. Robbie

----- Ace Fekay [MVP] wrote: ----

In

Thanks Ace. I made this change and used one of the dynamic i
addresses. I can get in now. Only thing is how does this work whe
they use dynamic ip addressing. How can I add subnet range to this
Thanks again

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
You mean that your ISP changes their IP address for the websit
occassionally? I doubt if they are using DHCP for a webserver, since i
causes resolution issues and they don't want to do that

But if they change the IP once in awhile for whatever reason, then forge
the method I told you. Instead, rt-click your zone name, choose Ne
Delegation, type in www, and give it the domain name's SOA DNS servers. The
can be found by going to the registrar and see who the nameservers are o
record for the domain
You can also
nslooku
server 4.2.2.
set type=n
domain.co
And the nameservers will show up here


Now If I misunderstood your question, can you explicitly state what you mea
by 'add subnet range to this' please
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

--
Regards
Ac

Please direct all replies to the newsgroup so all can benefit
This posting is provided "AS-IS" with no warranties and confers n
rights

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MV
Microsoft Windows MVP - Active Director

 

[Guest]

Thanks. I will give that a try also

----- Jonathan de Boyne Pollard wrote: ----

R> The external website has dynamic ip addresses for load balancing s
R> we are unable to hard code the ip address.

Then you need to use the second method

<URL:http://homepages.tesco.net./~J.deBoynePollard/FGA/dns-split-horizon-common-server-names.html>

 

[Ace Fekay [MVP]]

In

Thanks Ace. I will try the delegation and see. Our web hosting
company uses dynamic ip addressing for their servers. From my
understanding this means they use a range of ip addresses for this
website. This is for failover and redundancy. Not sure exactly how
this works with DNS entries.

Ok, this is really NOT dynamic IP delegations, but rather a server farm,
using either firmware (like Dell's Big-IP) or mutliple same-name DNS host
entries pointing to different IP address, where if this is the case, then
Round Robin is used to load balance it

Maybe the delegation will work. Our
website is www.chfindustries.com. When you look it up you get
multiple records. If you try to connect via http:\\ip address you
can't, but if you connect http:\\www.chfindustries.com you can.

Yes, delegation will work for this scenario.

Right now, I have updated our internal DNS with one ip address. It
is working now, but not sure how it will play out with the dynamic ip
situation. Looks like it should continue fine. We will just monitor
the addresses in case they add or remove. Thanks for the help.
Robbie.

No problem.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory