question

TiaRojas-5756 avatar image
0 Votes"
TiaRojas-5756 asked hrojas answered

Windows server 16 with a website

My windows server 16 has: IIS, DNS and active director

My local server is obama.local and I host a website call obama.work

The external clients can access the website without any problem

The internal clients can't access the website

I will need to configure DNS Forward Lookup zone but don't the details.
I configures the lookup zone with the following:

obama.work
Name = cpanel
Type= Host(a)
Data = <The external IP address>


This is all I have and is not working.
Can you please help me or give me a web page with information as what to do?

windows-serverwindows-server-iis
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Sounds like you may need a split brain deployment.
https://docs.microsoft.com/en-us/windows-server/networking/dns/deploy/split-brain-dns-deployment

also note install active directory domain services and IIS together is risky and conflicting. A better option may be to install the hyper-v roles (as only role) on host, then stand up two virtual machines, one for IIS application and other as active directory domain controller.

--please don't forget to Accept as answer if the reply is helpful--






5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

CandyLuo-MSFT avatar image
0 Votes"
CandyLuo-MSFT answered

Hi ,

DNS entries just used to resolve domain name to an IP address. First make sure you can access the website by IP address in the LAN. If you are not able to access the website by IP, then this issue is not related with DNS resolution.

Best Regards,
Candy


If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Just checking if there's any progress or updates?

--please don't forget to Accept as answer if the reply is helpful--


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TiaRojas-5756 avatar image
0 Votes"
TiaRojas-5756 answered CandyLuo-MSFT commented

@CandyLuo-MSFT that is very interesting. I opened a browser in my intranet and enter:

  • internal IP address, I get error: HTTP Error 404. The requested resource is not found.

  • external IP address, I got this error: This site can’t be reached ERR_CONNECTION_RESET

My host file has
"external IP" "www.obama.com"

If I enter the "internal IP" "www.obama.com" I am able to access the intranet website on that computer only but, I can't be updating all the iphones and ipads host files for all users.
I need to find a solution in my server, I was under the impression that DNS Split can fix the problem?

· 5
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.


First check if you can ping IP address successfully. If you cannot ping IP address, this should be a network issue. If you can ping IP address but cannot access the website by IP address, this might be a IIS issue.

0 Votes 0 ·

From his reply, I got the impression that his IIS may also be configured to explicitly listen for host name "www.obama.com", therefore directly typing in the internal IP won't work.

0 Votes 0 ·

We might get some information from his web.config file.

0 Votes 0 ·
Show more comments
DSPatrick avatar image
0 Votes"
DSPatrick answered

, I was under the impression that DNS Split can fix the problem?

You can follow along here to setup a split brain.
https://docs.microsoft.com/en-us/windows-server/networking/dns/deploy/split-brain-dns-deployment

--please don't forget to Accept as answer if the reply is helpful--





5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TiaRojas-5756 avatar image
0 Votes"
TiaRojas-5756 answered

@DSPatrick According to @CandyLuo-MSFT this is not a DNS setup issue because I can't access the website by IP address in the LAN
DNS will only help with the resolve domain name to an IP address but I must be able to access the website by IP address 1st.

Any help with the LAN configuration?

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Ok, if that's the case then there may be some routing issue. I'd get your network techs to look into that. Again I'd hope that this server is not multi-homed and also doesn't hold the active directory domain services role.

--please don't forget to Accept as answer if the reply is helpful--










5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TiaRojas-5756 avatar image
0 Votes"
TiaRojas-5756 answered

@DSPatrick I am he network tech and IT admin. SAD

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

My windows server 16 has: IIS, DNS and active director

I hope that this server is not multi-homed and also doesn't hold the active directory domain services role. This would be problematic for a number of reasons and could make the routing unstable.

--please don't forget to Accept as answer if the reply is helpful--






5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Just checking if there's any progress or updates?

--please don't forget to Accept as answer if the reply is helpful--


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.