DNS Problem

[Kevin]

I have a server that is running Exchange AD & DNS w/
domain of example.com. Now the company has a web site
hosted off site with the same public domain. DNS doesn't
resolve the company web site but resolves everything else.
In a test environment I changed the DNS zone to
ex.example.com and DNS was able to resolve it, but the
workstations couldn't find the exchange server. Is there a
way to get DNS to work with the same private and public
domain name?

 

[Ace Fekay [MVP]]

In

I have a server that is running Exchange AD & DNS w/
domain of example.com. Now the company has a web site
hosted off site with the same public domain. DNS doesn't
resolve the company web site but resolves everything else.
In a test environment I changed the DNS zone to
ex.example.com and DNS was able to resolve it, but the
workstations couldn't find the exchange server. Is there a
way to get DNS to work with the same private and public
domain name?

The reason it wont resolve is because a DNS server will not forward a query
for a zone that it believes it's authorative for.

Easy fix...Under your example.com zone, create the necessary resource
records, such as www, mail, (or whatever it needs) and give it the actual
external IP address of that site/resource.




--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Kevin]

-----Original Message-----
In Kevin <[email protected]> posted their thoughts, then I
offered mine

The reason it wont resolve is because a DNS server will not forward a query
for a zone that it believes it's authorative for.

Easy fix...Under your example.com zone, create the necessary resource
records, such as www, mail, (or whatever it needs) and give it the actual
external IP address of that site/resource.




--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

mail record but I don't see how to create the www record.
Please tell me what I am over looking.

 

[Ace Fekay [MVP]]

In

mail record but I don't see how to create the www record.
Please tell me what I am over looking.

Rt-click, new Host, in the name box, type in 'www' (without the quotes), and
in the bottom box, type in the IP address.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[denisf]

I have the same problem, I believe. Internal lan machine diane.xyz.com
can't get email from pop.xyz.com which is hosted externally by the web
host xompany.

Wouldn't this require that the external host have a static IP addr ?
Is this solveable if it's addr isn't static ? Ace, could you give me a
quick pointer how to add the resources that you talked about ? Or a
ref to learn more about them ?

 

[Ace Fekay [MVP]]

In

I have the same problem, I believe. Internal lan machine diane.xyz.com
can't get email from pop.xyz.com which is hosted externally by the web
host xompany.

Wouldn't this require that the external host have a static IP addr ?
Is this solveable if it's addr isn't static ? Ace, could you give me a
quick pointer how to add the resources that you talked about ? Or a
ref to learn more about them ?
On Tue, 30 Dec 2003 14:06:02 -0800, "Kevin"

All you have to do is create a record called pop under your internal xyz.com
zone name and give it the external IP. I don't believe there's any specific
docs on this (unless something came up recently), it's just a general method
on how to make it work. Anytime you have a split-horizon zone, (internal and
external names are the same), and you'r eproperly only using your internal
DNS, then you have to make manual entries since the DNS server will not send
out a request for something it believe it's SOA for (when the zone exists in
it's own server). Make sense? You can make other records, like smtp, ftp,
www, etc, when needed.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Kevin D. Goodknecht [MVP]]

In Ace Fekay [MVP] <PleaseSubstituteMyActualFirstName&[email protected]>
posted a question
Then Kevin replied below:
: In : (e-mail address removed) <[email protected]> posted their thoughts, then I
: offered mine
:: I have the same problem, I believe. Internal lan machine
:: diane.xyz.com can't get email from pop.xyz.com which is hosted
:: externally by the web host xompany.
::
:: Wouldn't this require that the external host have a static IP addr ?
:: Is this solveable if it's addr isn't static ? Ace, could you give me
:: a quick pointer how to add the resources that you talked about ? Or a
:: ref to learn more about them ?
:: On Tue, 30 Dec 2003 14:06:02 -0800, "Kevin"
::
:
: All you have to do is create a record called pop under your internal
: xyz.com zone name and give it the external IP.
If he is worried about the external host "pop" not having a static IP he
could delegate the name to the Authoritative DNS that hosts the public zone.

 

[denisf]

Hi Ace,

Yes, that does make sense, many thanks for the help. I will
look into doing that in the coming week.

I just had another idea. I think it might be better if I just shut
down the local DNS server. No one in this small company runs a
web/ftp/... server. I have another client that doesn't run the DNS
server and they seem to be doing fine. Am I correct in thinking that
one doesn't need a local DNS server in cases like this ? Am I missing
something ?

Thanks again all,
Denis

 

[Kevin D. Goodknecht [MVP]]

In (e-mail address removed) <[email protected]> posted a question
Then Kevin replied below:
: Hi Ace,
:
: Yes, that does make sense, many thanks for the help. I will
: look into doing that in the coming week.
:
: I just had another idea. I think it might be better if I just shut
: down the local DNS server. No one in this small company runs a
: web/ftp/... server. I have another client that doesn't run the DNS
: server and they seem to be doing fine. Am I correct in thinking that
: one doesn't need a local DNS server in cases like this ? Am I missing
: something ?
:

You need the internal DNS if you have Active Directory or if you have
services running behind NAT the you need access by name.
For instance if you have a webserver behind NAT that you need to connect to
its sites by name. If you are behind NAT you cannot connect to its sites by
the public IP, you can only connect to them by the private IP. You need a
local DNS to resolve the names into private addresses.
Active Directory must have DNS to work, period.

 

[Ace Fekay [MVP]]

In Kevin D. Goodknecht [MVP] <[email protected]> posted their thoughts,
then I offered mine

If he is worried about the external host "pop" not having a static IP
he could delegate the name to the Authoritative DNS that hosts the
public zone.

Good point too. I think delegation is actually easier.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Ace Fekay [MVP]]

In

In

You need the internal DNS if you have Active Directory or if you have
services running behind NAT the you need access by name.
For instance if you have a webserver behind NAT that you need to
connect to its sites by name. If you are behind NAT you cannot
connect to its sites by the public IP, you can only connect to them
by the private IP. You need a local DNS to resolve the names into
private addresses.
Active Directory must have DNS to work, period.



--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
============================

I agree.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[denisf]

Many thanks guys for all the help, this has been great !

Denis