Wireless Networks Thread, Another day, another DNS question in Technical; I have been looking into the way DNS has been setup on our server and not sure on something. Well ...
20th November 2008, 12:11 PM #1
Another day, another DNS question
I have been looking into the way DNS has been setup on our server and not sure on something. Well a few things actually.
Basically the server hosts ISA and has two network cards, one external to ISA, with LA IP, piping in the internet and one internal on the private range.
On the sever, I can ping an internal machine by IP and its name is resolved. Therefore its using the server's own DNS. However, if I try nslookup <machine name> it tries to use the LA DNS which fails. The external card is configured to use the LA DNS and the internal the server DNS.
So a further poke around DNS revealed that there were no forwarders setup. Usually I would setup forwarders so that anything not in the domain gets passed to the LA DNS. So now I am wondering how the server is actually resolving requests from clients?
So...should I setup forwards as usual and change the DNS of the external card to point at the server? Or how do I make the server use its own DNS for nslookup? Or what?
Confused (for some reason DNS really does my nut in) so any help gratefully received.
Last edited by sparkeh; 20th November 2008 at 12:15 PM.
IDG Tech News
20th November 2008, 12:30 PM #2
Think I found the answer on TechNet.
All interfaces in the ISA box must point to the same DNS server. To have internal resolution on the server you need both to point at the server DNS with forwarders to the LA DNS.
Correct me if I am wrong someone
20th November 2008, 12:43 PM #3
No correction required.
My DNS server has 2 x NIC, 1 internal on 10.* range, one pointing to the Internet on 192.168.* range.
Internal DNS is pointing to the 10.* IP
External DNS is pointing to the 192.168.* IP
Hope that helps - basically point each NIC DNS settings to itself.
Thanks to ShorehamGeek from:
sparkeh (20th November 2008)
20th November 2008, 12:55 PM #4
I know this has really nothing to do with the question.
But 172.000.000.000, 192.168.000.000, 10.000.000.000 are internal addresses. Which I though you can't route to
20th November 2008, 04:24 PM #5
You shouldn't configure the external interface with a DNS setting. Only config the internal interface that points to your internal DNS server. Configure a rule that the internal DNS server can resolve dns through the firewall. You should do this to avoid looping through the firewall. .. check on google with : split dns isa server
Thanks to bio from:
sparkeh (20th November 2008)
20th November 2008, 04:38 PM #6
Thanks bio, I misread the *dont* bit of the technet article that said 'don't configure dns for each nic'
By RabbieBurns in forum Windows
Last Post: 6th October 2008, 06:27 PM
By Uraken in forum MIS Systems
Last Post: 18th October 2007, 02:15 PM
By MyDejaVu in forum Windows
Last Post: 30th May 2007, 09:10 PM
Last Post: 20th May 2007, 12:21 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)