Re: Unable to resolve external DNS

Joe Thomas wrote:
Hi Kevin,

Checked the forward lookup zone, there is no "." zone. The IP address
165.21.83.88 is the ISP DNS server IP address.

Thank you for clear that up, I have directly tested that DNS server now and
find no problem with it and should work fine as a forwarder. If you cannot
query it directly from the DC, you would seem to have some routing or
firewall issues.

If you can ping it, that rules out routing issues and leaves only a blocked
port issue with the firewall. Use portqry from the Win2k3 server to the ISP
DNS.

portqry -n 165.21.83.88 -e 53 -p UDP -i

portqry -n 165.21.83.88 -e 53 -p TCP -i


--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================


.

Relevant Pages

  • RE: internet and private Dn
    ... >Subject: internet and private Dn ... I noticed that I can ping the firewall but not the isp ... Did you say that you could not ping your ISP's DNS Servers from the internal DNS Server? ... My concern is that you may simply not have communication with the ISP DNS Server. ...
    (microsoft.public.windows.server.dns)
  • Re: cannot access one web site.
    ... The dns server is on the sbs 2003. ... what I did to make it work although I did disable the firewall settings (in ... > you have internal domain name same as your registered domain ... > If yes then xxx.com is your domain, and a forward lookup zone ...
    (microsoft.public.windows.server.dns)
  • Re: Firewalls - Reviewed
    ... :I'm looking for a solid but fairly priced firewall that will ... I've ever encountered a firewall appliance that was also a DNS server. ... Port forwarding is very common, even in low-end devices that do not ... DNS address translation is a convenience. ...
    (comp.security.firewalls)
  • Re: Can Not Ping By Name
    ... >>> Make sure there's no firewall packaged with the VPN client. ... >>DNS server is the same physical server as the Exchange, ... > Network problem solving - general advice: ...
    (microsoft.public.windowsxp.network_web)
  • RE: ICMP/UDP flood
    ... when it can't resolve an address it then queries the upstream DNS server ... The Source is coming from my firewall box and the ... Destination is a DNS server on the Internet. ... to facilitate one-on-one interaction with one of our expert instructors. ...
    (Security-Basics)