DNS Issue with internal website from remote site

Security Software

Firewall.cx Newsletter

Firewall.cx Forums

Community Forums

Facebook Fans

Show your support for Firewall.cx!

Social Media Channels

Download Your Free
Network Scanner

System Login

Recommended Downloads

- Web Security
- Server AntiSpam
- Network Scanner
- IDS Security Manager
- Web-Proxy Monitor
- FTP / TFTP Servers
- Cisco VPN Client
- Network Fax Server

Statistics

Members : 5837
Content : 790
Web Links : 12
Content View Hits : 102205028

Top Website Visitors

37.3%		United States
16.8%		India
7.3%		United Kingdom
5.6%		Australia
4.3%		Canada
3.4%		Germany

Today:	7950
Yesterday:	8225
This Week:	26893
Last Week:	46456
This Month:	108874
Last Month:	232158
Total:	3361576

Gold Cisco Lab Partners

Best Rated Content

Latest Published Articles

Interview: Kevin Wallace CCIEx2 #7945 (Routing/Switching and Voice) & CCSI (Instructor) #20061

Need for Speed – The Data Tsunami & Advancements in Networking. From FastEthernet 100Mbps to Wireless 17.6Tbps!

Secure CallManager Express Communications - Encrypted VoIP Sessions with SRTP and TLS

Cisco & CompTIA Certification Offer - Save 60% on Certification Video Training For CCNA Security, CCNP Voice, CompTIA Network+ and Security+

Cisco Catalyst 4500 Series Zero-Downtime IOS Upgrade Process for Supervisor Engine 7-E, 7L-E, 6L-E and V-10GE Redundant Configurations

Cisco 4507R+E Layer 3 Installation: Redundant WS-X45-SUP7L-E Supervisor Engines & WS-X4648-RJ45V+E Line Cards

Major Changes & Updates to the Cisco CCNA Exam

Interview: Vivek Tiwari CCIEx2 #18616 (CCIE Routing and Switching and Service Provider)

Comparing Cisco VPN Technologies – Policy Based vs Route Based VPNs

Unified Communications Components - Understanding Your True Unified Communications Needs

Cisco Press Discounts - Valentine's Day Special - Save 40%!!

Discover Features & Capabilities - Cisco Catalyst 3850 With Integrated Wireless LAN Controller (WLC)

Cisco VPN Client & Windows 8 (32bit & 64bit) - Reason 442: Failed To Enable Virtual Adaptor - How To Fix It

How to Restrict Cisco IOS Router VPN Client to Layer-4 (TCP, UDP) Services - Applying IP, TCP & UDP Access Lists

Configuring SPAN On Cisco Catalyst Switches - Monitor & Capture Network Traffic/Packets

Welcome, Guest

Firewall.cx Forums

Networking, Security & Administration

Design, Installation & Troubleshooting

DNS Issue with internal website from remote site

(1 viewing) (1) Guest

Reply Topic

New Topic

Page:
1

TOPIC: DNS Issue with internal website from remote site

DNS Issue with internal website from remote site 10 months, 3 weeks ago #38051

Radius
( User )
OFFLINE
New Member
Posts: 3
Karma: 0

I have an issue that I could use some help with.

Our company has a main location and a remote location. Previously, the remote location was connected to the main location through an internet connection VPN tunnel. The connection was pitifully slow at 1.5Mbps, so we upgraded it with a 75Mbps direct link. That meant the remote location lost it's internet access, so we routed their access through the main office internet connection.

Everything works perfect except for one thing. The website we host is not accessible from the remote location unless the IP address is used.

If I do NSLOOKUP on our website address from a machine connected to the main location network, it resolves correctly to the inside IP address. However, if I do the same from a remote location machine, it resolves to the website's outside IP address.

Our internal DNS server(s) have a pointer and CNAME records set up, and everything was working perfectly before the connection was upgraded. In addition, the remote location has a domain controller, DNS server and DHCP server to service these requests at the remote location and prevent these requests from getting routed back and forth over the link.

So I think was it happening is that for some reason the DNS server at the remote location is not resolving our website name correctly and passing the requests on to the routers, which then push the request out to the internet DNS system. That resolves the name to our external IP.

This is purely a DNS issue, everything else works just fine. I am just stumped on this one.

Any ideas on how to fix this?

Oh, and FYI, there is a ASA-5505 at the remote location and a ASA-5510 at the main location. The link is connected to these devices with the 5510 handling the bulk of the routing.

Thanks, Michael

Reply Quote

Re: DNS Issue with internal website from remote site 10 months, 3 weeks ago #38052

Radius
( User )
OFFLINE
New Member
Posts: 3
Karma: 0

Problem solved..

We have an older W2K3 machine that is scheduled to be decomissioned/upgraded. The previous admin had set up a forward lookup zone on this machine for internal users to access our website using the public URL. Unfortunately, this lookup zone was not integrated with Active Directory and was not being replicated.

This worked fine under the old connection since it was a VPN tunnel into the main office. The Cisco devices were set up to use that machine for DNS requests. Once the connection was changed, that forward lookup zone was no longer available to clients in the remote office.

I created a forward lookup zone with appropriate entries on the W2K8 machines with DNS integrated into AD. Problem solved.

Michael

Reply Quote

Reply Topic

New Topic