Default IP returned for the entire domain???

R

RCS

I have two Win2K active directory DNS servers for a domain - let's say s1
and s2 for the mydomain.com domain.

I have "www" pointing to s2. So if a user goes to www.mydomain.com - then it
works. But the standard seems to be, to have a handler for if someone types
(or they end up going to) http://mydomain.com/ (without the www)

Right now, if I ping www.mydomain.com - it points to s2 (which is correct).
but if I ping mydomain.com - it brings back the IP address of s1 - which is
NOT correct.

Where does the DNS get this? How can I change this???

In short, I want the 'default' IP address for a domain, to be
s2.mydomain.com


thanks!!
 
H

Herb Martin

RCS said:
I have two Win2K active directory DNS servers for a domain - let's say s1
and s2 for the mydomain.com domain.

I have "www" pointing to s2. So if a user goes to www.mydomain.com - then it
works. But the standard seems to be, to have a handler for if someone types
(or they end up going to) http://mydomain.com/ (without the www)

Right now, if I ping www.mydomain.com - it points to s2 (which is correct).
but if I ping mydomain.com - it brings back the IP address of s1 - which is
NOT correct.
Click to expand...

Do you have an AD domain in this zone?

If so you cannot do what you wish internally UNLESS the
DC is also the web server.

All DCs in AD domains register the bare domain/zone name
thus: domain.com
 
R

RCS

Thanks for the response.

I'm not sure exactly what you mean. Here's more info:

s1 is like a test box. it's a web server, sql server and also has DNS on it.
It's a AD domain controller and DNS is AD-integrated.

s2 is the public web site, sql server and it has DNS on it. It's the other
AD domain controller and the DNS is AD-integrated, obviously.

Right now, mydomain.com returns the IP of s1 - would I would like to do is
have it return the IP of s2.

Is that possible?? Because the DC is also the web server, which is also a
DNS server - it sounds like you are saying it is? If so - how?? thanks
again!
 
K

Kevin D. Goodknecht Sr. [MVP]

In
In an Active Directory domain environment, the domain name must resolve to
the private interface in which file sharing is enabled on all domain
controllers. You have no choice on the matter, it could cause Group policies
to fail to be applied if you change it.

This record is for the domain DFS Share at \\mydomain.com\sysvol which
exists on all DCs. your only choice is to create a website for mydomain.com
on all DCs and have IIS redirect the site to http://www.mydomain.com
 
H

Herb Martin

It also sounds like you are trying to use the same
DNS server for both internal (internal AD zone)
and external (Internet) resolution.

That doesn't usually work correctly or is very
insecure.

In general, your public DNS should be left at the
REGISTRAR (or returned there) if they offer
that service -- most of them do.
 
R

RCS

That's an excellent point.

I do use it for internal and external for this setup. So people on the
internal network 192.168.1.x point to the machines via the internal names -
and Internet users point to the external names/addresses. It would be nice
to have just a regular internal DNS and take advantage of the utilities that
are already available.... hmm.. thanks!
 
H

Herb Martin

RCS said:
That makes perfect sense, thanks.

So if I did use my registrar (netsol) for public DNS, how would THEY point
to me, for "mydomain.com" resolution?
Click to expand...

They will point the PARENT domain (.com etc) to
their OWN DNS servers.

They will give you a web interface for managing your
domain.
I mean these all work somehow, and I'm
guessing they don't have a webserver on thier DNS machines!!! :)
Click to expand...

Makes sense but although most people use their OWN Web
server, SMTP, etc., these registrars commmonly today will
do the whole think: web, email too.

I don't suggest people put those with the registrar necessarily
as they cost extra (usually) and are of a limited nature in most
cases.
http://yahoo.com/
http://cnn.com/
http://sony.com/
Click to expand...

The recommendations from us to leave the DNS at registrar
are for all BUT the largest Internet companies, which likely
would include all those mentioned above (yahoo for sure)
since they have their OWN 24/7 support staff and fault
tolerant hardware.
 
K

Kevin D. Goodknecht Sr. [MVP]

In
RCS said:
That makes perfect sense, thanks.

So if I did use my registrar (netsol) for public DNS, how
would THEY point to me, for "mydomain.com" resolution? I
mean these all work somehow, and I'm guessing they don't
have a webserver on thier DNS machines!!! :)
Click to expand...


The web site is running on one of your DCs, correct?

You can add the host header to the DC that does have the web site running on
it. You can also do the same redirect on the web server so that no matter
which way the connection is coming from the same redirect is happpening.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

DNS server keeps overwriting the nameserver field!! 7
Need DNS to point use external NS for singe website 5
Access mydomain.com (shared hosting) while in network mydomain.com 6
DNS record for company domain name 1
DNS A record has local IP NAT to a global ip, does it work?? 10
DNS Verification 2
Need help on DNS setting 9
Fix Child Domain DNS prior to adding 2003 DCs 1

Top