| Author |
Message |
Justin
Guest
|
 Posted:
Thu Jan 06, 2005 9:16 pm Post subject:
DNS login issues |
|
|
I'm having a similar problem to the situation in the following
article, I was wondering if you could suggest a solution for me as
well.
http://groups.google.ca/groups?q=clients+long+login+time+DNS&hl=en&lr=&c2coff=1&client=firefox-a&selm=uggivM3eEHA.3520%40TK2MSFTNGP10.phx.gbl&rnum=5
I have a smaller network (20 users) and have just switched to a
server-based network from peer-peer. After setting up some clients on
the server, I noticed this long login problem. After doing some
research, I realized it was because I didn't have my server's IP as a
DNS entry on my workstations. I adjusted this and it seemed to work on
"most" computers. The problem I have is that my domain name is
identical to my pop3 and smtp mail servers. When I removed my ISP DNS
entries, my computer only looked to the server for mail. I can't
access my external company website either (web and mail hosted by
someone else on an external server) I even checked to see that those
ISP DNS numbers were added as forwarders on the server, and they were,
but they still wouldn't grab the email. When I re-add the ISP DNS to
the workstations and put the servers DNS on the bottom of the list,
email works again, but the long login time is only fixed on some
computers and not all. Any ideas and help would be greatly
appreciated!
Justin |
|
| Back to top |
|
 |
Al Mulnick
Guest
|
| Posted:
Thu Jan 06, 2005 11:25 pm Post subject:
Re: DNS login issues |
|
|
Justin, what you are describing is often referred to as 'split-brain' dns.
Basically, you have the same domain 'internally' as you do 'externally'.
The way DNS works is basically this: your client will ask a name server for
information about a domain. If the name server it asks is authoritative for
the domain being queried, it doesn't ask any other name servers nor does it
ask the name server to ask any others. It accepts the answer as
authoritative.
In practice this means that you'll want to add the POP and HTTP addresses
for your external domain to your internal DNS server. It would have been
easier if you hadn't used the same domain name as suggested in many of the
planning docs, but since you did, you just need to maintain the correct DNS
entries in your internal DNS database. Your clients should be using your
'internal' DNS server to find all addresses both internally and externally.
If you put the POP, SMTP, and HTTP entries in there, they shouldn't know the
difference.
Al
"Justin" <justinhebb@gmail.com> wrote in message
news:6a0e28ff.0501060716.7bd7f349@posting.google.com...
| Quote: | I'm having a similar problem to the situation in the following
article, I was wondering if you could suggest a solution for me as
well.
http://groups.google.ca/groups?q=clients+long+login+time+DNS&hl=en&lr=&c2coff=1&client=firefox-a&selm=uggivM3eEHA.3520%40TK2MSFTNGP10.phx.gbl&rnum=5
I have a smaller network (20 users) and have just switched to a
server-based network from peer-peer. After setting up some clients on
the server, I noticed this long login problem. After doing some
research, I realized it was because I didn't have my server's IP as a
DNS entry on my workstations. I adjusted this and it seemed to work on
"most" computers. The problem I have is that my domain name is
identical to my pop3 and smtp mail servers. When I removed my ISP DNS
entries, my computer only looked to the server for mail. I can't
access my external company website either (web and mail hosted by
someone else on an external server) I even checked to see that those
ISP DNS numbers were added as forwarders on the server, and they were,
but they still wouldn't grab the email. When I re-add the ISP DNS to
the workstations and put the servers DNS on the bottom of the list,
email works again, but the long login time is only fixed on some
computers and not all. Any ideas and help would be greatly
appreciated!
Justin |
|
|
| Back to top |
|
|
Guest
|
| Posted:
Fri Jan 07, 2005 8:03 pm Post subject:
Re: DNS login issues |
|
|
Thanks Al, I quickly figured out that naming my domain the same
internally as externally was a bad idea! But it's been a rush-job
setup...
How, exactly do I add the POP and HTTP addresses to my internal DNS
server when the names are indentical? If my internal server is called
"acme.com", my pop and smtp are also "acme.com", and I would use
acme.com or www.acme.com to access the website.
Thanks again for the help and explanation,
Justin |
|
| Back to top |
|
|
Al Mulnick
Guest
|
| Posted:
Sat Jan 08, 2005 7:49 pm Post subject:
Re: DNS login issues |
|
|
A records. You want to add an A record to the acme.com zone for the POP and
SMTP servers.
Where most of your records might be
A RR = DC.ACME.COM = 10.x.x.x
your POP server would like this:
A RR = POP.ACME.COM = 172.x.x.x (or whatever your ISP POP server address
is).
That's it.
Keep in mind you'll have some issues with acme.com domain only if you expect
it will resolve externally. That's the record for your internal domain
which will resolve to the DC. Don't change that one. In fact, don't change
any of them, but rather add the address for SMTP, POP and WWW. Keep it
simple if you can't rename the domain.
Al
<justinhebb@gmail.com> wrote in message
news:1105106624.654905.203180@f14g2000cwb.googlegroups.com...
| Quote: | Thanks Al, I quickly figured out that naming my domain the same
internally as externally was a bad idea! But it's been a rush-job
setup...
How, exactly do I add the POP and HTTP addresses to my internal DNS
server when the names are indentical? If my internal server is called
"acme.com", my pop and smtp are also "acme.com", and I would use
acme.com or www.acme.com to access the website.
Thanks again for the help and explanation,
Justin
|
|
|
| Back to top |
|
|
Guest
|
| Posted:
Mon Jan 10, 2005 7:35 pm Post subject:
Re: DNS login issues |
|
|
Right, that's what I figured. My problem is that my POP server is
ACME.COM, not POP.ACME.COM, and my SMTP server is ACME.COM, not
SMTP.ACME.COM
Is there any way to work around it with those limitations? Thanks
again,
Justin |
|
| Back to top |
|
|
Al Mulnick
Guest
|
| Posted:
Tue Jan 11, 2005 6:27 am Post subject:
Re: DNS login issues |
|
|
Sure. Tell your users to configure a different name. Find out the IP
address of the servers and instead of acme.com as the address, create
pop.acme.com and smtp.acme.com which points to that address.
Make sense?
<justinhebb@gmail.com> wrote in message
news:1105364110.864154.22130@c13g2000cwb.googlegroups.com...
| Quote: | Right, that's what I figured. My problem is that my POP server is
ACME.COM, not POP.ACME.COM, and my SMTP server is ACME.COM, not
SMTP.ACME.COM
Is there any way to work around it with those limitations? Thanks
again,
Justin
|
|
|
| Back to top |
|
|
Guest
|
| Posted:
Tue Jan 11, 2005 8:48 pm Post subject:
Re: DNS login issues |
|
|
I think I'm getting the bigger picture now. I did what you just
suggested by accident, and it worked, but I didn't know why until you
sort of explained it there. Thanks Al, your help has been greatly
appreciated!
Justin |
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in