|
Posted by Patrick Brydone on March 11, 2007, 1:56 am
Please log in for more thread options Many thanks for your help. I'll give it a go tomorrow and let you know how I
make out.
--
Patrick Brydone
"Roger Abell [MVP]" wrote:
> not really a security issue Patrick
>
> When you selected the Windows domain to have name
> britishschoolislamabad.com the AD setup defined a DNS
> zone in the DNS services on the domain controller by that
> DNS domain name. All machines in your domain MUST
> use that DNS server (i.e. in their Tcp/Ip settings have that
> and only that as their DNS server).
>
> Now, for that to work, your DNS server must either be
> able to resolve outside names (by use of root hints or by
> having your ISP's DNS server defined as a forwarder).
>
> However, since you have a britishschoolislamabad.com
> DNS zone (and must for AD support) the outside zone by
> the same name will never get used by machines in your
> AD domain. So, you need to add records to your verision
> of the britishschoolislamabad.com for outside resources,
> such as adding an A host record with name www and
> IP 205.209.114.110 at which point your clients will be
> able to get to the external website. If your website is
> actually internal and the 205.209.114.110 is just a public
> access point that proxies to the webserver, you might
> what to consider using the internal site access IP instead
> of the public.
> You will need to similarly add records to the internal
> DNS zone for any other external resources with names
> ending in britishschoolislamabad.com
>
> For future reference this should have been in newsgroup
> microsoft.public.windows.server.dns
>
>
> >I have a strange problem that I can't sort out. I manage an Internet site
> > (www.britishschoolislamabad.coM). I also manage a Windows 2003 network
> > (XP
> > clients). The Windows 2003 domain name has been set at
> > britishschoolislamabad.com. The server installation went without any
> > problems and the client computers can log onto the domain without any
> > problems. The strange thing is that none of the clients (including the
> > server) cannot access our own site (www.britishschoolislamabad.com). When
> > I
> > type in the URL it gos into a live search and comes back with "Page cannot
> > be
> > displayed". I can access all other Internet sites/pages with no problems
> > at
> > all. I'm wondering if by mistake, I've locked this site out in AD. I
> > have
> > looked everywhere (as best as I can) but can't find anything. I have even
> > removed AD and reinstalled it but still no luck. As soon as I remove any
> > of
> > the workstations from the domain and use it as a stand-alone, I can access
> > the site which leads me to beleive that it has something to do with a
> > Policy
> > setting. Grateful for any help or advice on how to cure this. Needless
> > to
> > say, it's quite urgent. What use having our own web site, it we can't
> > access
> > it from our own domain. Many thanks
> > --
> > Patrick Brydone
>
>
>
| 
XML Sitemap