"hello_" <> wrote in message news:...
>
> Hi,
>
> I have a webpage which is on the server 2003, and has an internal ip
> address on it.
> We have an external ipaddress which will go throught the router and
> then to the switch.
> for eg: an extenal ip address(200.112.152.150) has a DNS name and we
> have the webpage on an internal ip address (192.168.1.5)
>
> now if anyone gives this web address they should be abled to access
> this website which is on the internal server.
>
> can you please let me know how we can do that.
>
> Thanks in advance.
See if the following blog helps.
================================================== ================================================== ==
How do I get to my external website when my AD domain internal name is the same as my external name?
Or
From inside the office, I can't get to
http://domain.com, but can using
http://www.domain.com after creating an A 'www' record.
---
By Ace Fekay, MCT
Updated 7/29/2008
---
Is your internal domain name and external domain name the same? If so, it's called a split zone.
There are two ways to get to your website using 'www' in front of your domain name (such as
www.domain.com), depending on how your web hosting provider's web servers are setup:
1. The simplest way to allow your internal users to get to your external website is to simply create a "A" www record (DO NOT create an Alias or CNAME record), and provide the IP address of the external web server.
2. However, if your web hosting provider uses more than one web servers, such as in a server farm, instead of an "A" record, I suggest to create a delegation for 'www' to the public name servers that are authorative for your zone. YOu will need to find the SOA of your zone. To create the record, simply right-click your zone name, choose new delegation, type in www, and provide the SOA of your public domain.
How do you get your SOA for your public domain name? Use nslookup.
In a command prompt, type in nslookup, hit enter.
Then type in the following:
> set q=soa
> server 4.2.2.2
> typeInYourDomainNameHereWithoutTheWWW
The results will tell you the SOA of your domain name. Use that for the delegation record when you create the delegation in step# 2 above.
As for getting to the domain with
http://domain.com (without the www in front of it), is a little more complex because EACH domain controller registers themselves into DNS with an IP address, which appears under your internal zone name as:
(same as parent) A x.x.x.x
This record is actually called the LdapIpAddress. Each DC registers one for itself. AD uses that record for a number of things, such as DC to DC replication, Sysvol replication, GPOs and DFS. Don't mess with it please or expect problems. The DCs will re-register this record anyway if you delete it and thwart your attempt.
To get around that, on EACH DC, install IIS. In the default website properties, Directory tab, select redirect, and redirect it to
www.domain.com. This way when any one of your users type in http//domain.com, it will resolve to the www record you've created in Step#1 or #2 above.
If different internal and external name and website hosted externally:
Nothing to do. Internet resolution will handle everything.
Don't forget, ALWAYS and ONLY use the internal DNS servers in your AD environment for all machins (DCs, member servers and workstations, including your VPN clients). Never use your ISP's DNS servers, or your router's IP address as a DNS address in any internal machine's IP properties. Otherwise, expect AD problems.
Don't forget to configure a forwarder for more efficient internet name resolution. I've always used this as a best practice. It offloads internet name resolution to your ISP's DNS addresses so your server doesn't have to use the Root Hints to resolve external names.
Ace Fekay, MCT
================================================== ================================================== ==
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and confers no rights.
Please reply back to the newsgroup/forum to benefit from collaboration among responding engineers, as well as to help others benefit from your resolution.
Ace Fekay, MCT, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging
Microsoft Certified Trainer
http://twitter.com/acefekay
For urgent issues, you may want to contact Microsoft PSS directly. Please check
http://support.microsoft.com for regional support phone numbers.
Linear Mode
