DNS configuration in two-domain forests

Similar Messages

• DNS configuration for GSS

  Hi,
  I am newbee to GSS. I would like to deploy the GSS in my datacenter.
  I would like to know the DNS configuration example for domain.
  ex:
  www.abc.com
  What records need to configured with detail script. beacause i dont have experience in DNS server configuration.
  I am looking for positive update.
  Regards
  sateesh kumar.k
  i

  Typical flow is as follows
  1. Client will hit their DNS servers (configured on their machines as primary/backup dns server).
  2. "Client's DNS server" will query "DNS server authoritative for abc.com" for www.abc.com.
  3. "DNS server authoritative for abc.com" will ask "client's DNS server" to query "GSS - Authoritative for www.abc.com"
  4. "Client's DNS server" will query GSS for www.abc.com.
  5. GSS will send the ip add of www.abc.com (which should be configured on ACE as VIP).
  6. "Client's DNS server" will handover this VIP to client
  7. Client will hit the VIP configured on ACE (for application www.abc.com).
  Syed iftekhar Ahmed

• Configuring SMTP Namespace Sharing between two Exchange Forests on the same LAN

  Hi guys, really hoping that someone can help me with configuring SMTP Namespace Sharing between two Exchange Forests on the same LAN.
  Basically, I have created a new forest and installed a new exchange organisation in this forest.  Both forests are located on the same IP subnet and a two way trust has been created between the forests.  Federated sharing has also been configured. 
  I can use ADMT to migrate the user and computer accounts to the new forest and also migrate test mailboxes over.  Ideally, I want to be able to do the mailbox migrations in stages so will need to be able to have mail flowing between the two forests. 
  I have read over the following article (http://ibrahimnore.wordpress.com/2012/09/06/configuring-smtp-namespace-sharing-between-two-exchange-forests-part-2/)
  which is good but it's demonstrating over the internet, can anybody advise how this can be achieved on the local LAN? 
  Any help greatly appreciated :-)

  Hi Gilliano,
  Thanks for correct link. I must say this is a very good article indeed, I read the entire article and if you go to the 3rd part of this article, please note the text "DOMAINC.COM is configured as Internal Relay Accepted Domain on both the domains"
  This is exactly what I asked you to check. Personally, I understand the method described in this article will work but its very complex to manage and administer, while the easiest option is to configure internal relay at the first place and no need to make
  so many DNS changes and customizations to your environment.
  The solution really depends on what your requirement is - Since you mentioned that you are migrating stuff over from source to destination - I feel this article is too complex for your situation and not really worth (for your requirement). The setup described
  in the article is an excellent choice if you are planning to keep both forests alive for longer duration due to several reasons like compliance or company mergers and so on...
  please let me know if my explanation is not clear enough.. we can even even have a one-on-one email conversation too!
  All the best!
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. Regards, Siva

• Two domains + two servers + one static IP address = DNS confusion

  I'll try to keep this simple:
  I have two domains, two mac mini SL servers, one airport extreme, and multiple static IPs, but only one of them pointing to the router. I've configured DNS successfully for the primary domain (example1.com) and thought that I had set up a second primary zone for the second domain (example2.com) but all external requests point to example1.com.
  So the two setups i've tried are:
  Reverse zone
  1.0.10.in-addr.arpa.
  - 10.0.1.200 - example1.com
  - 10.0.1.201 - example2.com
  Primary zone
  example1.com
  - example1.com - 10.0.1.200
  - example2.com - 10.0.1.201
  OR
  Primary zone 1
  example1.com
  - example1.com - 10.0.1.200
  Primary zone 2
  example2.com
  - example2.com - 10.0.1.201
  Does anyone know of a good tutorial for hosting multiple servers in an internal network, pointing to one name server internally? I've looked everywhere and cannot make sense of the issue.
  Thanks in advance.

  After sleeping on it, I came up with a much easier solution that works better for what I'd planned in the first place. I hung a spare router off my gateway and set up a completely different network for the second server and everything is great now. I knew there was a reason I'd signed up for five IPs...
  In any event, I don't think I would've been able to accomplish what I was trying to do while using the Airport Extreme as my firewall. I wanted to have separate static IPs for each of the boxes and obviously I couldn't do that with the airport, although it took a while for me to recognize that.
  thanks for the suggestion, though. I think I'm going to use that for some subdomains.

• #554 5.4.4 SMTPSEND.DNS.MxLoopback; DNS records for this domain are configured in a loop ##

  Hi,
  This is my first post here. 
  My exchange server of late is facing a peculiar problem. I get the error message that I have posted below when sending mails to any outside domain. However when I restart the server the mails can be resend to the address without any issue. After a certain
  time again the issue pops up upon which I am forced to restart the server again. I am running 2007 Exchange on Windows 2003.
  Generating server: name.mydomain.com
  [email protected]
  #554 5.4.4 SMTPSEND.DNS.MxLoopback; DNS records for this domain are configured in a loop ##
  [email protected]
  #554 5.4.4 SMTPSEND.DNS.MxLoopback; DNS records for this domain are configured in a loop ##
  Original message headers:
  Received: from name.mydomain.com ([1xx.xxx.xxx.xx5]) by MHDMAILS.mouwasat.com
   ([1xx.xxx.xxx.xx5]) with mapi; Wed, 19 Oct 2011 08:56:29 +0300
  From:  <[email protected]>
  To: <[email protected]>
  CC: "Al Alami,Tareq" <[email protected]>
  Date: Wed, 19 Oct 2011 08:56:27 +0300
  Subject: RE:   
  Thread-Topic:   
  Thread-Index: AcyAQ5tu8z9CvBfdT5+1pcGQkk6x0AIuwczAAAGZjeABQyW5sAADeeJQAAETNDA=
  Message-ID: <[email protected]>
  References: <[email protected]com>
   <[email protected]com>
  Accept-Language: en-US
  Content-Language: en-US
  X-MS-Has-Attach: yes
  X-MS-TNEF-Correlator:
  acceptlanguage: en-US
  Content-Type: multipart/related;
              boundary="_004_EEC8FA6B3B286A4E90D709FECDF51AA06C0588CA11namedomain_";
              type="multipart/alternative"
  MIME-Version: 1.0

  On Sun, 23 Oct 2011 15:05:15 +0000, Jobin Jacob wrote:
  >
  >
  >Even af
  >
  >ter removing my domain from the send connector I continue to receive the error. I would like to say I do have a firewall, Cyberoam. However, it was the same configuration till now in the firewall. I did try Mx lookup and found the following.
  >
  >Could there be any other solution to this issue ?
  Sure, but it's necessary to ask a lot of questions since none of us
  know how your organization is set up.
  I see you also have "Use the External DNS Lookup settings on the
  transport server" box checked. How have you configured the "External
  DNS Lookups" on the HT server's property page? Is there any good
  reason why you aren't just using your internal DNS servers? If the
  internal DNS servers are configured to resolve (or forward) queries
  for "external" domains then there's no reason to use that checkbox. In
  most cases checking that box is a mistake.
  http://technet.microsoft.com/en-us/library/aa997166(EXCHG.80).aspx
  The behavior you describe (it works for a while and then fails;
  restarting the server returns it to a working state) sure sounds like
  some sort of DNS problem.
  Rich Matheisen
  MCSE+I, Exchange MVP
  --- Rich Matheisen MCSE+I, Exchange MVP

• Two-way forest trust between two (single domain) forests with multiple identical user ID's

  Domain and forest levels - Windows 2003 (they both have one 2008 R2 DC)
  We need to create a two-way forest trust between two separate single-domain forests. The problem is that these two forests already access each others resources through a S2S. Users have the same login names and passwords on both forests/domains. Now, we
  are combining their infrastructures and need to set up a trust. From what I'm reading, you can't create forest trusts if you have the same SIDs, user ID's, or computer name in each of the forests.
  I'm looking into AD migration tool to copy the userSIDs (SID history?) between forest/domain, deleting the user ID's in the domain we migrated from, and then setting up the trust, but I'm leery about doing it this way as there is no easy 'recovery' should
  something go wrong. 
  Any suggestions for the easiest way to setup this forest trust?

  Hi,
  To eliminate your worries, two user accounts have the same user name doesn’t mean that they have the same SID. Moreover, the user’s SID remains the same even after it has been renamed.
  The SID for domain account/group consists of a
  Domain Identifier and a Relative Identifier. Domain Identifier is unique in every domain within a forest, and a Relative Identifier is unique within domain. It is unlikely that two user accounts with or without the same account
  name from two forests have the same SID.
  The Technet article you mentioned is talking about duplicate SIDs instead of “duplicate computer name or user account”, I will submit a change request to Microsoft about this.
  If there are duplicate SIDs when you create forest trust, you need to delete one of them as the article guides.
  Here are some related articles below for your references:
  How Security Identifiers Work
  http://technet.microsoft.com/en-us/library/cc778824(v=WS.10).aspx
  Security Identifier Structure
  http://technet.microsoft.com/en-us/library/cc962011.aspx
  Security Identifier
  http://en.wikipedia.org/wiki/Security_Identifier
  I hope this helps.
  Amy Wang

• Error while configuring ADC (Additional Domain Controller)

  Hello Experts,
  I am configuring ADC (Additional Domain controller) in a member server which is in workgroup. while configuring ADC on that server, I got a window saying "additional information for this domain controller", where there were three options, i.e.
  DNS server, Global Catalog, RODC (Read only Domain controller) and bydefault first two options(DNS & Global Catalog) were checked. I kept that setting and clicked on next. Now this is showing I need to give a static IP to my adapter, but I have already
  given a static IP. when I unchecked the DNS button from that window it was not giving such error. Now my question is if I continue without checking the DNS, will it give me trouble in future. Please suggest. I am using MS2008 R2.
  Swaprakash..

  Ensure that you don't have another NIC in your server that is set to obtain IP address from DHCP. However, even if you proceed with this warning, you will probably not have any errors later, as long as you're sure that you have static IP assigned to your
  internal NIC.
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you. Thank you! Damir

• DNS issues from one domain controller to another (but not the other way) nslookup DNS request timed out

  Hi All
  I've been trying to trudge my way through an issue our client is having but I'm getting nowhere fast. This issue was discovered when searching for why users at our second site were experiencing slow logons every morning (5-10minutes to login).
  Within our domain there are two domain controllers for the child domain we manage.
  DC1 has connection back to the parent DC's (managed by our clients parent company), and also replicates both ways with DC2. DC2 is at another site, on another subnet and replicates to and from DC1 only.
  DC2 appears to have no issues, it can resolve any address, nslookup either using itself or DC1 is fine and name servers resolve fine.
  DC1 has massive issues with DC2 - using it for nslookup gives me the following:
  I get this timeout error for internal and external names, but both DC's are able to ping and access internet with no issues.
  When trying to resolve name servers from DC1, DC2 sits at 'validating' for a while and then comes back with 'a timeout occurred during validation'.
  Restarting DNS Server, NETLOGON and registering in DNS from DC2 had DC1 talking to it fine for a few minutes, but then it went back how it is (and I haven't been able to replicate this fix since).
  Reverse DNS zones are setup for all the subnets used, there are A records and PTR's for both DC's.
  Performing 'ping -a dc2.ip.address' from DC1 comes back fine - it knows what it is in both directions (name and IP) but nslookup and nameserver resolution is still failing.
  I just don't know where to go from here - from everything I've read they should be happy... Any ideas?

  Hi,
  When NSLOOKUP starts, before anything else, it checks the computer's network configuration to determine the IP address of the DNS server that the computer uses.
  Then it does a reverse DNS lookup on that IP address to determine the name of the DNS server.
  If reverse DNS for that IP address is not setup correctly, then NSLOOKUP cannot determine the name associated with the IP address.
  http://support.simpledns.com/kb/a90/nslookup-cant-find-server-name___-default-server-unknown.aspx
  Also refer to:
  How to fix NSLOOKUP Default Server: UnKnown?
  http://www.randika.info/2013/01/how-to-fix-nslookup-default-server.html
  Regards.
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Mail server and DNS configuration

  I have an XServe G4 running Mac OS X 10.4 Tiger Server, and I have successfully configured two domains that I purchased from GoDaddy as websites on this XServe. It's behind an Airport Extreme, and I have forwarded a bunch of ports in order to enable FTP, SSH, Web, remote Server Administration, webmail, and I have also forwarded the IMAP and SMTP ports. All of these services work except for email, so I am wondering if there is any special DNS settings that I need to configure in the GoDaddy total dns configuration page. I have the MX record pointed directly to my IP, just like the A record. I also have mail.mydomain.com pointed to the A record's IP (maybe I described that poorly, but I hope it gets the point across). I am able to log into webmail and send email out to other people, but when I try replying back to the email which I sent from webmail, I get a bounced message. I also cannot configure a Mail client, but I think I need to get the accounts at least working first. Can someone provide a list of DNS requirements or server configuration requirements for me to check off in order to make this happen? Does anyone know of any great resources to learn this kind of stuff? I'm kinda new to the server thing.
  Thanks!
  Paul

  postconf -n results:
  command_directory = /usr/sbin
  config_directory = /etc/postfix
  daemon_directory = /usr/libexec/postfix
  debugpeerlevel = 2
  html_directory = no
  inet_interfaces = localhost
  mail_owner = postfix
  mailboxsizelimit = 0
  mailbox_transport = cyrus
  mailq_path = /usr/bin/mailq
  manpage_directory = /usr/share/man
  mydestination = $myhostname,localhost.$mydomain,localhost,rubenkalath.com
  mydomain = rubenkalath.com
  mydomain_fallback = localhost
  myhostname = mail.rubenkalath.com
  mynetworks = 127.0.0.0/8
  mynetworks_style = host
  newaliases_path = /usr/bin/newaliases
  queue_directory = /private/var/spool/postfix
  readme_directory = /usr/share/doc/postfix
  sample_directory = /usr/share/doc/postfix/examples
  sendmail_path = /usr/sbin/sendmail
  setgid_group = postdrop
  smtpdtls_certfile = /etc/certificates/Default.crt
  smtpdtls_keyfile = /etc/certificates/Default.key
  smtpdusetls = no
  unknownlocal_recipient_rejectcode = 550
  virtualmailboxdomains = hash:/etc/postfix/virtual_domains
  virtual_transport = lmtp:unix:/var/imap/socket/lmtp
  ps U _postfix results:
  ps: _postfix: no such user
  tail -20 /var/log/mail.log results:
  May 15 15:55:27 sincity postfix/cleanup[1257]: 765DC4517A: message-id=<[email protected]>
  May 15 15:55:27 sincity postfix/qmgr[1239]: 765DC4517A: from=<[email protected]>, size=881, nrcpt=1 (queue active)
  May 15 15:55:27 sincity postfix/smtpd[1254]: disconnect from localhost[127.0.0.1]
  May 15 15:55:27 sincity postfix/pipe[1259]: 765DC4517A: to=<[email protected]>, relay=cyrus, delay=0, status=sent (mail.rubenkalath.com)
  May 15 15:55:27 sincity postfix/qmgr[1239]: 765DC4517A: removed
  May 15 15:58:09 sincity postfix/smtpd[1338]: connect from localhost[127.0.0.1]
  May 15 15:58:13 sincity postfix/smtpd[1338]: lost connection after CONNECT from localhost[127.0.0.1]
  May 15 15:58:13 sincity postfix/smtpd[1338]: disconnect from localhost[127.0.0.1]
  May 15 16:06:09 sincity postfix/postfix-script: refreshing the Postfix mail system
  May 15 16:06:09 sincity postfix/master[590]: reload configuration
  May 15 16:12:48 sincity postfix/smtpd[1709]: connect from localhost[127.0.0.1]
  May 15 16:12:54 sincity postfix/smtpd[1709]: lost connection after CONNECT from localhost[127.0.0.1]
  May 15 16:12:54 sincity postfix/smtpd[1709]: disconnect from localhost[127.0.0.1]
  May 15 16:28:58 sincity postfix/smtpd[2068]: connect from localhost[127.0.0.1]
  May 15 16:28:58 sincity postfix/smtpd[2068]: 1FA354537C: client=localhost[127.0.0.1]
  May 15 16:28:58 sincity postfix/cleanup[2071]: 1FA354537C: message-id=<[email protected]>
  May 15 16:28:58 sincity postfix/qmgr[1530]: 1FA354537C: from=<[email protected]>, size=776, nrcpt=1 (queue active)
  May 15 16:28:58 sincity postfix/smtpd[2068]: disconnect from localhost[127.0.0.1]
  May 15 16:29:02 sincity postfix/smtp[2072]: 1FA354537C: to=<[email protected]>, relay=mercury.gatech.edu[130.207.192.26], delay=4, status=sent (250 Ok: queued as 67542CDF86)

• Ise Authentication to two different forests second using External Radius, Not LDAP

  Hi Guys,
  I am hoping someone can help me.  We currently have two AD forests one for staff and one for students.  These forests do not have a two way trust between them nor do we want to. We currently have Ise 1.2 integration with our Student forest using AD working just fine. The ipads and other devices are playing nicely and cooperating well.    We want to get our staff to be able to use ISE as well.  Currently there is no way to use two AD forests so I was directed to use LDAP instead for the second domain.  Unfortunatley after playing around with it LDAP doesn't support mschapv2 which our mobile devices like ipads do play nicely with.  This causes an issue only because we would have to utilize certificates to get everything to work correctly.  This is not the route we want to go.  So i was speaking to Tac and they recommended using an External Radius server.  Then modify my auth profiles to look for the domain name in the authentication string.  If it starts for example student\ then i can have ise forward the auth request to the AD integrated PSNs for auth.  If the auth string starts with staff\ for example i should be able to forward this request to my external radius server. 
  This sounds all good in theory but i have not found any documentation to support this to help me configure it.  Has anyone tried this approach?  Or have any leads on where i can find some good documentation as to what radius servers are supported.  I am hoping Windows server 2008 R2 with a radius role installed, but i am just not sure.
  If anyone can help i would greatly appreciate it.
  Thank you
  Joey

  That is correct! Cisco ISE supports integration with a single Active  Directory identity source. Cisco ISE uses this Active Directory identity  source to join itself to an Active Directory domain. If this Active  Directory source has a multidomain forest, trust relationships must  exist between its domain and the other domains in order for Cisco ISE to  retrieve information from all domains within the forest.
  However,  you may create multiple instances for LDAP. Cisco ISE can communicate  via LDAP to Active Directory servers in an untrusted domain. The only  limitation you would see with LDAP being a database that it doesn't  support PEAP MSCHAPv2 ( native microsoft supplicant). However it does  suppport EAP-TLS.
  For more information you may go through the below listed link
  http://www.cisco.com/en/US/solutions/collateral/ns340/ns414/ns742/ns744/docs/howto_45_multiple_active_directories.pdf

• Combining two Domains in a single Forrest

  Issue:  We have a forest - bcxxx.com and with-in lives two domains: xyz.com & abc.com.  Both domains are in the same physical location.  Is there a best practice to merge one into the other or create a new domain and merge the two into
  one?  I'm inherited a mess and there isn't a need to have them separated.  There is currently a trust between the two but  I would like to clean this up the best way possible and do it following the best practice format.  A single domain
  environment would work fine and it would be more organized and less complicated. 
  Is there a way to do this with-out starting over from scratch?  700+ Users +600 devices would make this a nightmare.  Any suggestion will be greatly appreciated.
  RT

  Thank you for the input, i appreciate it.  Yes, this current setup is unnecessarily complicated and a big mess.  There are to many issues to mention just in general as to the amount of odd errors popping up.  So instead of trying to troubleshoot
  each individual one I want to take the proper steps to help clean it up, upgrade the domain, and then see if these problems still exist.
  Some of the daily issues: unable to browse devices on the network - Computers by name or add computer to the domain | DNS Issue.  By manually adding the same DNS IP's addresses to the NIC which it had the by DHCP resolves the issue.  Setting it
  back to Automatic DNS after the fact, the computer works works fine.  This is just one very minor problem.
  Thanks again.
  Randy Taylor

• How To: Host Two Domains on Lion Server - One IP

  Here is the situation: I own a new MacMini and have installed Lion Server. All of my updates are current. I have purchased two domains from a reputable “Gddy” source. (I don’t know if I can use there official name). I think I am doing something wrong because I have to type the “www.”mydomain.com to get to my websites. How do I host my two sites?
  Here is what I have done so far and have been somewhat successful. For purposes I will refer to my domains in this question as domain1.com and domain2.com. At Gddy my DNS A records for @ both point to my single IP. In addition my www CNAMEs point to @ for both my domains.
  My server admin DNS read the following:
  Name – 1.168.192.in-addr.arpa / Type – Reverse Zone / Value - Blank
  Sub Name – 192.168.1.6 / Type – Reverse Mapping / Value – server.mydomain1.com.
  Name – server.mydomain1.com / Type – Primary Zone / Value – Blank
  Sub Name – server.mydomain1.com. / Type – Machine / Value – 192.168.1.6
  In Lion server I have Web Server turned on and have setup the following web sites:
  server.mydomain1.com
  www.mydomain2.com
  www.mydomain2.com
  I am using iWeb and have both websites loading through SFTP successfully.
  I am using a SSH certificate I created using my apple ID
  Questions:
  Why do my customers need to type the www to access my domains?
  Do I need to setup another primary zone called server1.mydomain2.com?
  Currently everything works fine if you type the www before the domains but I am now on a mission to refine my sites. If users get errors trying to get to my site then they will stop trying and I don't want that. Apple community please help. This stuff really amazes me and the fact that I am somewhat "catching on" is a great feeling. Thank you.

  As Belle points out, this has little or nothing to do with DNS. It's all about Apache.
  When a request comes in, Apache looks at the hostname of the request to determine which site's configuration to use for that request.
  Right now you have two 'sites' configured - 'www.domain1.com' and 'www.domain2.com'.
  When a request comes in for, say, http://domain1.com/ Apache does that same lookup, except it doesn't find a match - you don't have any configuration for 'domain1.com', only 'www.domain1.com'. THESE ARE DIFFERENT.
  There is absolutely no automatic relationship between a host record (e.g. 'www.domain1.com') and its parent domain (e.g. 'domain1.com'). It makes no difference that you have a DNS CNAME that maps one hostname to another because Apache isn't doing DNS lookups on the incoming requests.
  The solution, as indicated, is to tell Apache the list of hostnames that match each site. By telling the 'www.domain1.com' site that it's valid for 'domain1.com' as well (and even 'foo.domain1.com' or 'bar.domain2.com' if you want, too), Apache can serve the request with the appropriate configuration.

• Set up Migration Endpoint to single-label Domain/Forest

  I'm in the process of migrating a company from a single-label domain & forest, "domainname," to a new "newdomainname.local" domain & forest. EX2013 single-server installed and working on both domains, including autodiscover. Trust
  is set up and works, cross-domain DNS works from both sides. However...
  I can create a Migration Endpoint on ex2013.domainname that points to ex2013.newdomainname.local, but when I try to add a mailbox created in newdomainname.local, none are displayed.
  I can't create a Migration Endpoint at all on ex2013.newdomainname.local. I get a message that starts, "We couldn't detect your server settings. Please enter them. AutoDiscover failed with a configuration error: The migration service failed to detect
  the migration endpoint using the Autodiscover service."
  I'm prompted for the FQDN of the other Exchange server. When I enter ex2013.domainname, I get, "Error: The connection to the server 'ex2013.domainname' could not be completed."
  Is this expected when one server is on a single-label domain? Is there a way to enable me to use mailbox migration?
  TIA

  Thank you for your post.
  This is a quick note to let you know that we are performing research on this issue
  Niko Cheng
  TechNet Community Support

• How to create Trust between two domain

  How to create Trust between two domain:
  please help

  Hi,
  By default, two-way, transitive trusts are automatically created when a new domain is added to a domain tree or forest root domain using the Active Directory Installation
  Wizard. The two default trust types are defined in the following table. However there have others many types of the AD trust, please refer the following KB to determine which type you need:
  Trust types
  http://technet.microsoft.com/en-us/library/cc775736%28v=ws.10%29.aspx
  More relate KB:
  Creating Domain and Forest Trusts
  http://technet.microsoft.com/en-us/library/cc740018(WS.10).aspx
  The related third party article:
  How to configure Forest Level Trust in Windows Server
  http://blogs.interfacett.com/how-to-configure-forest-level-trust-in-windows-server
  *** This response contains a reference to a third party World Wide Web site. Microsoft is providing this information as a convenience to you. Microsoft does not control
  these sites and has not tested any software or information found on these sites; therefore, Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. There are inherent dangers in the
  use of any software found on the Internet, and Microsoft cautions you to make sure that you completely understand the risk before retrieving any software from the Internet. ***
  Hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• DNS configuration

  Hi All
  This may be a silly question so please forgive me, I haven't set-up a DNS in a while and I know I have forgotten something simple in my configuration.
  I have set up an Xserver 10.5.6 with a fully qualified domain name for example:
  mydomain.com
  machine name: ho.mydomain.com
  For some reason I am unable to access the external hosted web site without www (https://mydomain.com) on the internal network.
  From out side I can access the external hosted site with or without www, so my external hosting configuration is correct.
  What simple thing have i missed in DNS configuration my configuration?
  Primary Domain:
  mydomain.com
  www. machine (external ip address of web host)
  ho machine (server ip address)
  Please help, what have I forgotten to do?

  Hi,
  I think you want to replace
  www. machine (external ip address of web host)
  with
  A record mydomain.com -> external IP
  This sends an external request outside and comes back in;
  that way you can reach either www.mydomain.com or mydomain.com
  Ensure you have an alias record in the website setup for the www.
  HTH,
  Harry