Re: Web site viewable from outside office but not on Lan

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Jason Stevens <junk@xxxxxxxx> wrote:
> We host our own web site and also have an Intranet that is set up as
> basically another web site. We also host a 3rd site for one of our
> clients. The one has a domain of .com and the other .net.
>
> www.ourcompany.com - our web site
> www.ourcompany.net - our intranet
> www.client.com - the clients site


I notice from the server ipconfig /all that the public address on this
server is dynamic, so any of these sites if hosted locally will need to
point to a record that is dynamically updated so external users can access
the site when the IP changes.
Other than the problem noted below with the mail server, I think this is
mostly an IIS and a firewall problem. You need to make sure the proper ports
are open, and host header and IP addresses are properly configured in IIS.

>
> We used to be able to view all of them from the LAN and from outside
> the office. Now I can still view the .net from both the Lan and
> outside but the .com is only viewable from outside. When I try to
> view it from the Lan it just says "The page can not be displayed".
>
> The reason that I think this is a DNS issue is that for the clients
> site I went into the DNS and added a Forward Lookup Zone for
> www.client.com and then added a host with a blank name and assigned
> it to the correct IP address. I was then able to see this site from
> both the LAN and outside the office.

>
> There is a Forward Lookup Zone for ourcompany.com and it has a host
> with the same IP. The only difference that I see in the Zones is
> that ourcompany.com has a Text with the data "v=spf1 a mx ptr ~all"

You don't need this zone because it will only conflict with the public zone
hosted with your registrar.

After looking at the zone for this public domain, there is a major problem
with the MX record, it says
mail server host name is mail.rgsassociates.com, but that record is an alias
record (CNAME) some mail servers will not send to or receive mail from a
mail server using a CNAME.
See: http://www.dnsreport.com/tools/dnsreport.ch?domain=rgsassociates.com
QUESTION SECTION:
rgsassociates.com. IN MX

ANSWER SECTION:
rgsassociates.com. 21220 IN MX 0 mail.rgsassociates.com.
QUESTION SECTION:
mail.rgsassociates.com. IN A

ANSWER SECTION:
mail.rgsassociates.com. 21365 IN CNAME rgsassociates.com.
rgsassociates.com. 21365 IN A 24.229.80.170

You need to delete the CNAME record and create an A record named mail.
You also need to configure the SMTP virtual server in Exchange system
manager with the name mail.rgsassociates.com

The TXT record is an SPF record and is not needed on this server, it should
be in the public zone, which AFAIK your registrar does not support yet.

All sites on this server should be configured in IIS to be on any IP address
so IIS can bind to the External interface. Then the sites should work
internally and externally. The only zone you really need in your local DNS
are the ones for the AD domain which does not conflict with any local sites.


--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================


.

Relevant Pages

  • RE: No delivery report 4.4.7
    ... mail.rabarberlandet.dk is a mail server host on our ISP. ... Please let me know where the mail.rabarberlandet.dk host on. ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)
  • Re: Web site viewable from outside office but not on Lan
    ... ..net except the host header. ... > server is dynamic, so any of these sites if hosted locally will need to ... > mostly an IIS and a firewall problem. ... >> There is a Forward Lookup Zone for ourcompany.com and it has a host ...
    (microsoft.public.windows.server.dns)
  • Re: samba backup through firewall
    ... > This sounds as if you are running the mail server on some windoze platform ... ALL connections to the DMZ should be from ... > host, they are limited in what they can do. ... > relays it to an internal mail server where distribution actually occurs. ...
    (alt.computer.security)
  • Re: The following DNS server that is authoritative for the DNS DC locator records does not support d
    ... are hosting externally is NOT your AD zone, or you would be mixing private ... Since you are trying to host externally, in the interface tab, let it listen ... If you want to do it right, get another DNS server (an old ...
    (microsoft.public.windows.server.dns)
  • Re: DNS Failure 2000 server
    ... I followed the directions up to the point: ... On the Action menu, click New Host. ... type the name of your server as the DNS ... Click Add Host to add the new host record to the zone. ...
    (microsoft.public.win2000.dns)