Re: DNS resolcing externally for local machines..

All queries are pretty much ass expected except the query to the forwarder.



This verifies the firewall cannot be DNS proxy

From the DC. nslookup -qtype=ns . 192.168.45.1
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.45.1

DNS request timed out.
timeout was 2 seconds.




From the DC. nslookup -d2 -qtype=ns . <IPofForwarder>
Server: UnKnown
Address: 192.72.6.57

DNS request timed out.
timeout was 2 seconds.
timeout (2 secs)

Nslookup is apparently not able to get through the firewall either, or the
DNS address is not valid, I've tried querying it myself and got no answer.
This could also be that the ISP has it blocked off their network.

Just to be sure, create a rule to allow 53 UDP to 4.2.2.2 then run this:

nslookup -qtype=ns . 4.2.2.2

It should return the ICANN Root servers.

You could also try allowing 53 UDP to any IP

I'm also going to gather some more info on your proxy, I know I use Wingate
and it has a special configuration if it runs on a DNS server to prevent
loops. I am not familiar with webmarshal


--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================


.

Relevant Pages

  • Re: Request help for Read timeout errors
    ... Is this an active firewall, that drops connections on certain rules? ... SYSERR: collect: read timeout on connection from ... you could increase the read timeout. ... That shows only the packet - not the ...
    (comp.mail.sendmail)
  • Re: Client connection keeps on dropping
    ... Besides the firewall timeout possibility, ... >is that you could test the theory by connecting them over ... >windows 2000 terminal server. ...
    (microsoft.public.win2000.termserv.apps)
  • Re: LogOn Scripts? - POP3 timeout?
    ... What's the whole error message? ... the XP firewall for a while until I was able to prove that there was no change ... What I have done instead is leave the POP3 timeout value set to its mimumum ... trace) and what doesn't happen when the problem occurs. ...
    (microsoft.public.windows.inetexplorer.ie6_outlookexpress)
  • Re: who does session disconnects
    ... Here is a sample of some of the timeout commands from a Cisco ASA firewall: ... To go beyond this default set of commands for a connection timeout, ... is no way that a Cisco PIX firewall will terminate your SSH session ...
    (comp.dcom.sys.cisco)
  • Re: Using SSH as a simple VPN: timeouts?
    ... down the connection after a certain period without traffic over it. ... The second one is the firewall of the university where my server is located. ... I don't have much information about this firewall (and possible timeout settings). ...
    (alt.os.linux)
Loading