Configuring DNS

[Ola]

Hello all,

I have a win2k advanced Server with AD running. when you
look in the DNS tab, you see the server name which is atb.
The forward lookup zone has atb-associates.com and it has
4 folders within it (_msdcs, _sites, _tcp, _udp) It also
has 4 other items with two of them being Host with my
server IP address. (192.168.1.22)

I have another domain name that I want to point to the
same IP address.

The question is can I do this and how do I accomplish it.
I have tried adding a zone and trying to create hosts
record for this new one and I have not been successful.

Please show me how to create a new DNS for my server so it
can be seen eventually on the internet.

Thank you

Ola

 

[Ace Fekay [MVP]]

In

Hello all,

I have a win2k advanced Server with AD running. when you
look in the DNS tab, you see the server name which is atb.
The forward lookup zone has atb-associates.com and it has
4 folders within it (_msdcs, _sites, _tcp, _udp) It also
has 4 other items with two of them being Host with my
server IP address. (192.168.1.22)

I have another domain name that I want to point to the
same IP address.

The question is can I do this and how do I accomplish it.
I have tried adding a zone and trying to create hosts
record for this new one and I have not been successful.

Please show me how to create a new DNS for my server so it
can be seen eventually on the internet.

Thank you

Ola

Are you saying you want to use YOUR DNS server to host a public zone? I
wouldn't do that due to security reasons and the mix of public and private
IP addresses. You would need to have two DNS servers that need to be
registered with the registrar as hostname servers and then goto the domain
records at your registrar and specify these two for your domain. They need
public IPs and not private IPs, as what you seem to have behind a NAT.
Otherwise it will cause problems. You can't mix public and private IPs on
the same DNS. Same thing goes, you do not want to make public a DNS server
that is hosting your internal AD zone, whether the IPs are public or
private.

Here's a post that I made recently for someone else with a similar question.

================================
You want to run YOUR own DNS server to host public zones?

It's overhead, and if you ask me,(and many others agree), let your ISP or
registrar host them.

But if you do (no easy way to explain it, but this is the unabdridged
version and you'll need to check with your registrar on how to do this with
their methods. Each one is different. I use Network Solutions. I'm not
familiar with domaindirect.com or even if they have this option. If they
don't, I suggest to go to Network Solutions, open an account (by buying a
domain, I believe) and transfer all your zones over there and do it from
there.

1. Goto your registrar and open an account (if you don;t already have one).
2. There should be an option to either manage "hostname servers" or
"nameservers" or something to that effect.
3. Create a new hostname server. Create TWO of them, matter of fact, which
is a REQUIREMENT. Not just your one, so you;'ll need another machine. You
can probably fudge this with mutliple IPs on the one server, but that's up
to you. I wouldn't.
4. Once those nameserver registrations take effect, go to your individual
zones in your registrar's account and change the nameservers to these two
machines.

Hope that helps and Merry Christmas to you.
=====================================
--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Ola]

Sorry for my non clarity. I have a web server running on
my win2k server. I have installed DNS of sort I am not an
expert, but the DNS Zone in my system says atb-
associates.com and it points to the server internal IP
address 192.168.1.22.

All I want is to add another domain name to point to the
same address locally. I seem to be having problem with my
internet access because I can see my site locally on my
server, but I cannot get to it from the internet. I seem
to think that since my router has the WAN IP and LAN IP ,
everyone should be able to see me from the internet.
However, I want the second domain name to resolve to the
LAN IP address of my server 192.168.1.22

I am not trying to run public DNS just the LAN one. I
think I was able to do the first one during installation
but having to add another domain name in my server dns is
my problem.

Thanks in advance..

 

[Ola]

If I may reiterate, my problem is that I have been here
before and I was told to point my PC to its own IP address
for DNS I was told to not put in my ISP's DNS server
addresses on my PC but just on my router.

I have two domain names registered, and what I want is
that when a request comes thru port 80 (Apache) it can be
redirected to the right place. I had originally configured
DNS for atb-associates.com and when you look in DNS
forward lookup zone you will see as I described earlier 4
folders within it (_msdcs, _sites, _tcp, _udp)and 4 other
items that are not in folders. Start of authority,
Nameserver and 2 hosts entries with the host pointing to
the IP address of my PC.

I am of the opinion that I need the other domain name to
be registered locally on my PC as well.

I figured when I look in the zone I should see two domain
names atb-associates.com and feyiola.com please correct me
if I am wrong. I have followed the direction for adding an
entry in the zone http://support.microsoft.com/?
id=300202&FR=1#5 and when I finished, the feyiola.com
folder looks different from the atb-associates folder
content wise. and that was why I am confused.

Thanks again

 

[Ace Fekay [MVP]]

In

If I may reiterate, my problem is that I have been here
before and I was told to point my PC to its own IP address
for DNS I was told to not put in my ISP's DNS server
addresses on my PC but just on my router.

That is correct, never use the ISP's DNS in your internal machines'. Matter
of fact, really your router doesn;t even need a DNS server, unless you're
pinging by name or doing other name resolution tests from the router or
something, other than that, they really don; tneed any DNS address.

I have two domain names registered, and what I want is
that when a request comes thru port 80 (Apache) it can be
redirected to the right place. I had originally configured
DNS for atb-associates.com and when you look in DNS
forward lookup zone you will see as I described earlier 4
folders within it (_msdcs, _sites, _tcp, _udp)and 4 other
items that are not in folders. Start of authority,
Nameserver and 2 hosts entries with the host pointing to
the IP address of my PC.

I am of the opinion that I need the other domain name to
be registered locally on my PC as well.

I figured when I look in the zone I should see two domain
names atb-associates.com and feyiola.com please correct me
if I am wrong. I have followed the direction for adding an
entry in the zone http://support.microsoft.com/?
id=300202&FR=1#5 and when I finished, the feyiola.com
folder looks different from the atb-associates folder
content wise. and that was why I am confused.

Thanks again

If I understand your needs and problems, so far it sounds like you're on the
right track. The two zones exist in DNS. But they are only for internal
usage and not from the Internet. Does your ISP host the atb-associates.com
and feyiola.com zones for you and point www record to your WAN IP?

You'll need those records in whatever DNS server is hosting your external
name to access it by name for your Internet folks. Internally, they will
still access it by the internal name which points to the internal IP of
192.168.1.22. So internally, a www record under each zone points to the same
IP of 192.168.1.22. Make sense? The hostheaders diffrentiate the websites.

If so, fine. Port remap port 80 to your internal IP of 192.168.1.22. In
Apache, create the two websites, and on each website, asscociate their
cooresponding hostheaders to their websites, so www.atb-associates.com is
associated to it's website and www.feyiola.com is assoicated with it's
website. They will both have the same IP address, which is 192.168.1.22. The
reason is NAT will not port remap one port (such as 80) to mulitple internal
addesses. YOu have to stick with the one, so the hostheader name becomes
important. So when a request comes in for www.atb-assocaiates.com, it will
be sent to it's website and same with the other one, but both have the same
IP.

So it needs to be done by name, with the same iternal IP of 192.168.1.22.

Not sure how to do it in Apache, but webservesr all follow the same rules.
Here's how to do it with IIS:

315982 - HOW TO Configure DNS Records for Your Web Site in Windows 2000:
http://support.microsoft.com/?id=315982

IIS Answers - How to create multiple websites with one IP address:
http://www.iisanswers.com/Top10FAQ/t10-hostheaders.htm

Using Host Headers to Allow for One I.P Address to Host Multiple Domains:
http://www.4guysfromrolla.com/ASPscripts/PrintPage.asp?REF=/webtech/080200-1.shtml

You'll need to check with the Apache documentation on how to do that. You'll
also need to ensure the www records for the name externally is set in
whomever is hosting the name externally to point both to the WAN IP of your
router.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Guest]

Thanks again,
From what you said below, and I am trying to quote you,you
are correct.

"If I understand your needs and problems, so far it sounds
like you're on the

right track. The two zones exist in DNS. But they are only for internal
usage and not from the Internet. Does your ISP host the atb-associates.com
and feyiola.com zones for you and point www record to

your WAN IP?"

The only problem I am having is that my domain name is
with a registrar that would not associate my domain names
to my WAN IP address so I am currently waiting the 60 day
period to transfer to one that allows me to manage my
domain with proper IP designation. As a matter of fact,
what the registrar has done is assign another IP to my
domain names (Their own IP somewhat), and then I had to
forward requests to my own IP address on their site. When
you type in my domain name in essence, it shows up as my
WAN IP address. This problem will be fixed by the second
week in January. I am hosting my own webserve in my house,
and they will nt give me full access to mnage my domain
unless they are hosting my domain. (You get what you pay
for).

Now for my problem, you seem to understand exactly what I
am trying to accomplish. I am still just a little confused.

In me creating host records in my LAN DNS as stated
earlier, do I need both domain names in my forward lookup
zone so that when requests come from the internet, the
right page loads up for the requester, or are you saying
that I do not need to touch DNS for that. Apache on its
own has namebased virtualhost that can help with the
domain name resolution, but I am just curious to know if I
need all my domain names to be registered in my LAN DNS,
and they all have host record that points to my LAN IP
addrss.

Thanks a million.

Ola

 

[Ace Fekay [MVP]]

In

Thanks again,
From what you said below, and I am trying to quote you,you
are correct.

"If I understand your needs and problems, so far it sounds
like you're on the

The only problem I am having is that my domain name is
with a registrar that would not associate my domain names
to my WAN IP address so I am currently waiting the 60 day
period to transfer to one that allows me to manage my
domain with proper IP designation. As a matter of fact,
what the registrar has done is assign another IP to my
domain names (Their own IP somewhat), and then I had to
forward requests to my own IP address on their site. When
you type in my domain name in essence, it shows up as my
WAN IP address. This problem will be fixed by the second
week in January. I am hosting my own webserve in my house,
and they will nt give me full access to mnage my domain
unless they are hosting my domain. (You get what you pay
for).

Now for my problem, you seem to understand exactly what I
am trying to accomplish. I am still just a little confused.

In me creating host records in my LAN DNS as stated
earlier, do I need both domain names in my forward lookup
zone so that when requests come from the internet, the
right page loads up for the requester, or are you saying
that I do not need to touch DNS for that. Apache on its
own has namebased virtualhost that can help with the
domain name resolution, but I am just curious to know if I
need all my domain names to be registered in my LAN DNS,
and they all have host record that points to my LAN IP
addrss.

Thanks a million.

Ola

Two weeks? That's crazy. What type of line do you have at home? Cable? DSL?
Cable may not allow inbound port 80 and/or http requests, so watch out just
in case.

Internal DNS is just for internal machines, that's it. You'll need that
internally to let internal machines to get to the internal site by the
internal IP because it's a private IP. You can't use the WAN IP from an
internal machine because a NAT device (no matter what brand you have) will
not port forward a request from it's internal interface back to it's
internal interface. Make sense?

Maybe you can just forward with your current subscriber to your WAN IP on
both domains and see if that works for now.




--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Ola]

I have DSL at home and for the purpose that I need it for,
it will do fine. I will add the DNS entry for the LAN then.

Appreciate it. And as you said, I was able to forward my
addresses from the registrar to my WAN IP address, and it
does redirects people to my webserver.

Thanks again.

Ola

 

[Kevin D. Goodknecht [MVP]]

In Ola <[email protected]> posted a question
Then Kevin replied below:
: I have DSL at home and for the purpose that I need it for,
: it will do fine. I will add the DNS entry for the LAN then.
:
: Appreciate it. And as you said, I was able to forward my
: addresses from the registrar to my WAN IP address, and it
: does redirects people to my webserver.
:
: Thanks again.
:
If Ace doesnb't mind if I jump in here I was reading back through the
thread. What you need to do is add a forward lookup zone for the name of the
new domain, add a record named www and a blank record, both pointing to the
internal address of the web server.
Then run this command ipconfig /flushdns (A step commonly missed, you must
flush the DNS resolver cache because it caches negative answers just like it
does a positive answer)

 

[Ace Fekay [MVP]]

In

In
If Ace doesnb't mind if I jump in here I was reading back through the
thread. What you need to do is add a forward lookup zone for the name
of the new domain, add a record named www and a blank record, both
pointing to the internal address of the web server.
Then run this command ipconfig /flushdns (A step commonly missed, you
must flush the DNS resolver cache because it caches negative answers
just like it does a positive answer)




--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
============================

Merry Christmas and a Happy New Year!

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Ola]

Thanks again,

I was able to add the forward lookup zone without a
problem the problem is in creating the records as you
said.The problem is not being able to create the new
records as you said.

"add a record named www and a blank record"

When I right clicked the new domain name in my forward
lookup zone, I get reload, new host, new alias, new mail
exchanger, new domain, new delegation and other new
records. When I click other new records, there is no
option for www.

Where exactly do I do this task before flushing the DNS
resolver?

Thanks again..

 

[Ace Fekay [MVP]]

In

Thanks again,

I was able to add the forward lookup zone without a
problem the problem is in creating the records as you
said.The problem is not being able to create the new
records as you said.

"add a record named www and a blank record"

When I right clicked the new domain name in my forward
lookup zone, I get reload, new host, new alias, new mail
exchanger, new domain, new delegation and other new
records. When I click other new records, there is no
option for www.

Where exactly do I do this task before flushing the DNS
resolver?

Thanks again..

I'm not exactly sure what you are saying? Are you saying you're not sure how
to create a host record? A www record is not an "option" but a record YOU
create.

If you're jnot sure how to, here are some steps to follow:
Rt-click your zone, new host. In the name box, type in www, in the IP
section below it, type in the internal IP address. To create a blank record,
rt-click, new host, for the name, leave it blank, but give it the IP address
below it. When you hit OK, it will tell you this is a blank record or some
sort of message, jsut say YES, create the record anyway. You're done!


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Ola]

Thanks I created everything as you suggested. However, all
my entries are only in forward lookup zone. I have no
entry in reverse lookup zone. Do I need the reverse and if
so How do I create the reverse zones same as the forward?

Thanks again.

 

[Ace Fekay [MVP]]

In

Thanks I created everything as you suggested. However, all
my entries are only in forward lookup zone. I have no
entry in reverse lookup zone. Do I need the reverse and if
so How do I create the reverse zones same as the forward?

Thanks again.

Ok, good.

Reverse zone should update automatically. Make sure updates set to at least
YES. For the ones you create manually, there is a checkbox saying to create
the reverse entry too. Make sure the reverse zone is created correctly for
your subnet.

Here's a link on basic How-To's for you:
Microsoft Windows 2000 Server DNS How Tos Documentation:
http://www.microsoft.com/windows200...n/server/help/sag_DNS_pro_Topnode.htm?id=1848

You can also hit this for the main site on DNS:
www.microsoft.com/dns




--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory