AD and DNS

T

Tom

Hi everybody,

I hope you guys will help me with this one. I am having
difficulties to setup correctly AD and DNS. OK, i have
install AD which works ok, but my problem is on DC i am
hosting a website. If i add www name server external ip,
it works ok, but when i do nslookup, i also see private
ip address. My question is if i install another external
dns server and leave AD one as internal DNS, how can i
redirect my website which is on DC? or any othere
suggestion?

Thank you.
 
M

Michael Johnston [MSFT]

Unless the DC is named "www" this shouldn't happen. Are there two records named "www" or is the "www" a cname for your
DC? If the "www" record is a cname that points to your DC, you will need to change the record from a cname to a host record
and point it to the IP address of the external interface of you web server.

Thank you,
Mike Johnston
Microsoft Network Support
--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the
terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from
which they originated.
 
A

Ace Fekay [MVP]

Depending on how the nslookup command is being used (set type=ns or set
type=all), he may also be retrieving the LdapIpAddress.

Normally suggest not to host websites on a DC. Exposing the DC to an
untrusted network (the Internet). Same with the DNS server. Get a seaprate
DNS server at least, use that for the external public IPs, point all your
internal machines including the DC to the internal DNS and forward to the
external DNS or to your ISP's DNS. In the internal DNS, create a www record
and give it the internal IP so your inside users can get to the site. Port
remap 80 to the webserver, port remap 53 TCP/UDP to the "extrernal" DNS.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
--
=================================

Michael Johnston said:
Unless the DC is named "www" this shouldn't happen. Are there two records
Click to expand...
named "www" or is the "www" a cname for your
DC? If the "www" record is a cname that points to your DC, you will need
Click to expand...
to change the record from a cname to a host record
and point it to the IP address of the external interface of you web server.

Thank you,
Mike Johnston
Microsoft Network Support
Click to expand...
rights. Use of included script samples are subject to the
terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this
Click to expand...
message are best directed to the newsgroup/thread from
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

New AD DNS Configuration Question 12
DNS forwarding loop 0
AD and website 1
why doesn't this DNS server on windows 2008 work? 5
removal of one of my AD-Integrated DNS servers 6
HELP 8
I have a second DC without DNS server. How to setup a DNS Server? 2
DNS Forwarding Not Work 2

Top