DNS Forwarding

[Hightower]

We have a Moodle server here, and at the minute when a user goes to moodle.domain.com it go out on the internet to retrieve it.

I have set up DNS so that moodle.domain.com goes to the internal IP of xxx.xxx.xxx.xxx which works a treat, but if I try to go to www.domain.com it throws a "cannot find server".

How do I open up (using internal DNS) moodle.domain.com to go to our internal IP but all other *.domain.com resolves using external DNS.

[powdarrmonkey]

What DNS server - windows, bind, other?

[Hightower]

What DNS server - windows, bind, other?

It's a Windows Server 2003 box

[powdarrmonkey]

Get the properties of the DNS server in the DNS MMC, and on the Forwarders tab pick 'All other DNS domains' and add your upstreams into the bottom section. Remember to hit Add to actually put them into the list.

[Hightower]

Get the properties of the DNS server in the DNS MMC, and on the Forwarders tab pick 'All other DNS domains' and add your upstreams into the bottom section. Remember to hit Add to actually put them into the list.

I right-clicked on the new zone I added, went to properties and then forwarders. Clicked all other DNS domains and it already has 2 IP's in there.

[MicrodigitUK]

What I did was manually added the static public ips for to the domain names manually into dns as there’s not that many on most domains. E.g. www.domainname .co.uk (public ip) mail.domainname.co.uk(public ip) imail.domainname.co.uk(public ip) and moodle.domainname.co.uk (with internal ip) folders.domainname.co.uk (with internal ip) intranet.domainname.co.uk (with internal ip) I think I had to put in another one for ISP mail server but you get the idea.

I got the public static ip’s by using Convert Host Name to IP Address or Find IP address of a host - e.g. find IP address of host name of to convert them.

Hope that helps

[Hightower]

What I did was manually added the static public ips for to the domain names manually into dns as there’s not that many on most domains. E.g. www.domainname .co.uk (public ip) mail.domainname.co.uk(public ip) imail.domainname.co.uk(public ip) and moodle.domainname.co.uk (with internal ip) folders.domainname.co.uk (with internal ip) intranet.domainname.co.uk (with internal ip) I think I had to put in another one for ISP mail server but you get the idea.

I got the public static ip’s by using Convert Host Name to IP Address or Find IP address of a host - e.g. find IP address of host name of to convert them.

Hope that helps

But we have forwarders like

Code:

add1.domain.com which directs to 123.123.123.123/add1
and
add2.domain.com which directs to 123.123.123.123/add2

So we can't do it the way you suggest.

Any other thoughts?

[saundersmatt]

From my understanding once you add a domain as a zone on your dns servers it becomes authoritative thusly you cannot pick and chose which subdomains you want it to answer for. You need to do as microdigit suggests and add all sub domains as exist on your public dns server.

The fact that you have multiple sub domains that may or may not point to different servers should not matter. So long as the subdomain and ip are the same between both dns servers it is the web server that resolves what content should be returned.

Matt

[SpuffMonkey]

Do you not just add the "moodle." into the forward lookup zone?

[kmount]

Do you not just add the "moodle." into the forward lookup zone?

If you have a zone for the .domain then yep.

[Hightower]

If you have a zone for the .domain then yep.

Which I have - that was the easy part.

The thing is, now I have that domain set up as a zone, I want to be able to say (excuse my pseudo code haha) "if the prefix (www. or ww2. etc) doesn't exist in this zone, find it on the internet."

[Hawkeyez]

Which I have - that was the easy part.

The thing is, now I have that domain set up as a zone, I want to be able to say (excuse my pseudo code haha) "if the prefix (www. or ww2. etc) doesn't exist in this zone, find it on the internet."

That should work anyway...

here we have

vle.* (moodle)
comm.* (moodle)
mail.* (exchange)
folders.* (webfolders)
share.* (sharepoint)

They are all internal

www.* (website)

Is external, but isnt listed in the zone, so goes out on the internet to fetch.
We mainly did first due to moodle, having upgraded to 1.9 ove the summer from 1.7, and was having issues with the fix to get around the server having 2 domains.
We then added mail and share, as we purchased a wildcard SSL cert for our domain.

Gary

[Hightower]

That should work anyway...

here we have

vle.* (moodle)
comm.* (moodle)
mail.* (exchange)
folders.* (webfolders)
share.* (sharepoint)

They are all internal

www.* (website)

Is external, but isnt listed in the zone, so goes out on the internet to fetch.
We mainly did first due to moodle, having upgraded to 1.9 ove the summer from 1.7, and was having issues with the fix to get around the server having 2 domains.
We then added mail and share, as we purchased a wildcard SSL cert for our domain.

Gary

See, that's exactly what I want yet for some reason it's not working. if I try www.* (because I haven't added a www look-up) I get a "server cannot be found" message instead of the externally hosted website.

Any ideas why this is so, and what I might need to look at to correct this?

Many thanks,

[SYNACK]

You need to do as below because as soon as you set it as a record on your DNS it is authorotive:

Re: Non authoritative domain on Windows Server 2003

You could create a zone called "hostname.domainname.com" and then within
that zone create a blank host A record (same as parent) pointing to the
relevant internal IP

Then your server would only be authorative for the zone "hostname.domainname.
com"and any records within that zone (such as the same as parent host record
you need)

Only drawback to this is you have to create a separate DNS zone for each host
and a same as parent record but it works

[ZeroHour]

I would just make a new forward lookup zone of moodle.domain.com (I assume on zone is domain.com) and create a blank A record with the IP.
That *should* work?