Welcome to ISAserver.org

within the same parent name server

Users viewing this topic: none

Logged in as: Guest

Printable Version

All Forums >> [ISA Server 2004 General ] >> Installation >> within the same parent name server

Page: [1]

Message

<< Older Topic Newer Topic >>

within the same parent name server - 21.Jul.2004 5:53:00 AM

Uju Sivas

Posts: 236
Joined: 31.Dec.2001
Status: offline

we have T1 line. So that our ISP is one.

they have provided 20 lan addresses, all public.

So, the line is coming as T1 - > Router - > Sonic Wall. Sonic wall is configured as one to one IP - there is no NAT.

I set up the new ISA server behind router - > switch.

And created mycompany.com domain AD and other servers. Also publish the web site portal.mycompany.com and it is accessible from outside and from inside ( from any of newly setup machines, AD etc )...

Just somehow, there was previous setup in behind the sonic wall with the same domain name, the ADs and other servers. Computers in office are joined to this domain. Here is the problem : when they try to access my newly publish site by http://portal.mycompany.com - the page does not show up.....says dns error....

http://portal.mycompany.com has internet presense, so if I access from outside, it works perfect....it works perfect from within the newly setup networks too....

So, I belive that in old computers, when they make the request to that domain name, it is not going outside and searching from outside....as mycompany.com is within their domain....

I think I might have to add the A record in old dns server ??? or do I have to go by trust relationship....

I'm just kinda lost....

Post #: 1

Featured Links*

RE: within the same parent name server - 22.Jul.2004 8:43:00 PM

tshinder

Posts: 47439
Joined: 10.Jan.2001
From: Texas
Status: offline

Hi Uju,

You need to create a split DNS and configure your Web Proxy clients to use Direct Access. Make sure you enter those domains on the Firewall client tab and the Web Proxy tab so that internal hosts use Direct Access to access internal resources.

HTH,
Tom

(in reply to Uju Sivas)

Post #: 2

RE: within the same parent name server - 29.Jul.2004 4:53:00 AM

Uju Sivas

Posts: 236
Joined: 31.Dec.2001
Status: offline

ts,
having kind of real issue here

netopia router A--- sonic wall --- ad (1)
B| client (1)
|
|
|____ ISA --------ad (2)
--------web server
------- client (2)

A is one of the lan port of router
B is one of the lan port of router

ad(1) is old active directory
ad(2) is new proposed plan

client 1 can access msn, yahoo, etc

Both ad is the same "namewise" - like both have mycompany.com domain

client 1 cannot access the web - like portal.mycompany.com

it says dns error , ipwise also same

help much appreciated

(in reply to Uju Sivas)

Post #: 3

RE: within the same parent name server - 29.Jul.2004 4:54:00 AM

Uju Sivas

Posts: 236
Joined: 31.Dec.2001
Status: offline

client 1 is also behind sonic wall

(in reply to Uju Sivas)

Post #: 4

RE: within the same parent name server - 29.Jul.2004 5:02:00 AM

Uju Sivas

Posts: 236
Joined: 31.Dec.2001
Status: offline

remember the gateway in isa is pointed to wan side gateway of router, so whenever the request is coming from there, it is responding.

But if the request is coming from lan side gateway of router, it looks like isa is not able to respond.....may be it feels like - its confused

remember when client 1 request its other public address (not nated ) - within other nearby port, the traffic does not go outside the router. so that isa can sense that it is coming from external gateway of router

(in reply to Uju Sivas)

Post #: 5

RE: within the same parent name server - 29.Jul.2004 6:47:00 AM

tshinder

Posts: 47439
Joined: 10.Jan.2001
From: Texas
Status: offline

Hi Uju,

Still seems like a name resolution to me. If a split DNS can't fit the bill, you might need to use HOSTS files or maybe reconfigure the name resolution scheme in a different way.

HTH,
Tom

(in reply to Uju Sivas)

Post #: 6

RE: within the same parent name server - 29.Jul.2004 4:41:00 PM