Internal DNS server and NAT routing issue.

Hi -- I am not terribly experienced with DNS and I am running into an issue that I can't seem to resolve. My company.com DNS information is hosted by an outside ISP for email, web, etc... but I have configured an A record there to point to the public IP to my mac os x server (server.company.com).
We have a cisco router configured with one to one NAT from the public IP to the internal IP for our server in a 192.168.15.x subnet. The same router is running DHCP and and NAT on that subnet under a different public IP provided by our ISP.
Our server is running DNS with recursion and has a "company.private" zone set up for internal services and machine names. Thus, the server is accessible via "server.company.com" from the outside and "server.company.private" from the private LAN.
The problem is that I would like to be able to access some services simply via "server.company.com" both inside and outside the private network. Now, accessing the "server.company.com" services from the private lan does not work because the name resolves to the external IP and the external IP cannot be used internally due to NAT.
Is there a way to configure my internal DNS server to respond with the appropriate private address when receiving a query only to "server.company.com" and forward requests on for anything else on "company.com"?
I know that I could manually duplicate all entries for our domain from my ISP and host the same entries for internal clients, but it would be much easier to only have our server handle requests for itself. The server is running OS X Server 10.4.11.
Thanks

Is there a way to configure my internal DNS server to respond with the appropriate private address when receiving a query only to "server.company.com" and forward requests on for anything else on "company.com"?
Ordinarily, no. Once your server thinks it is responsible for a zone (e.g. company.com) then it will answer all queries for that domain and never pass them upstream. Therefore you'd have to replicate all the zone data, including all the public records, and maintain them both.
The one possible exception to this (I haven't tried) is to create a zone for server.company.com that has your internal address. In theory (like I said, I haven't tried this), the server should respond to 'server.company.com' lookups with its own zone data and defer all other lookups (including other company.com names since they're not in a zone it controls). Might be worth trying.

Similar Messages

  • VPN between ASA5505 Easy VPN Server and 881G Router as Easy VPN Client

    Hello,
    I have problem in VPN between ASA5505 Easy VPN Server and 881G Router as Easy VPN Client. ASA 5505 have 7.2.3 software and 881G router have 15.1 software.
    881G is configured as hardware client in network exstention mode, and it is placed behind NAT. ASA5505 is working as server. Same VPN Group works correctly from VPN software clients.
    When I send traffic from 881G client side, in show cryto sessin detail I see encrypted packets. But with same command I dont see decrypted packet on ASA5505 side. On both devices Phase 1 and Phase 2 are UP. 
    VPN is working when I replace ASA5505 with ASA5510  correctly with have 8.4.6 software. But problem is that i need to do this VPN between ASA5505 and 881G.
    Can you help me, how can I debug or troubleshoot this problem ?
    I am unable to update software on ASA5505 side.

    Hello,
    Hire is what my config look like:
    crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
    crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
    crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
    crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
    crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
    crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
    crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
    crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
    crypto dynamic-map outside_dyn_map 20 set pfs
    crypto dynamic-map outside_dyn_map 20 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 40 set pfs
    crypto dynamic-map outside_dyn_map 40 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 60 set pfs
    crypto dynamic-map outside_dyn_map 60 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 80 set pfs
    crypto dynamic-map outside_dyn_map 80 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 100 set pfs
    crypto dynamic-map outside_dyn_map 100 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 120 set pfs
    crypto dynamic-map outside_dyn_map 120 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 140 set pfs
    crypto dynamic-map outside_dyn_map 140 set transform-set ESP-AES-128-SHA
    crypto dynamic-map outside_dyn_map 160 set pfs
    crypto dynamic-map outside_dyn_map 160 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 180 set pfs
    crypto dynamic-map outside_dyn_map 180 set transform-set ESP-3DES-SHA
    crypto dynamic-map outside_dyn_map 200 set pfs
    crypto dynamic-map outside_dyn_map 200 set transform-set ESP-AES-256-SHA
    crypto map outside_map 65535 ipsec-isakmp dynamic outside_dyn_map
    crypto map outside_map interface outside
    crypto isakmp enable outside
    crypto isakmp policy 1
     authentication pre-share
     encryption 3des
     hash sha
     group 2
     lifetime 86400
    crypto isakmp policy 2
     authentication pre-share
     encryption 3des
     hash sha
     group 1
     lifetime 86400
    crypto isakmp policy 3
     authentication pre-share
     encryption des
     hash sha
     group 2
     lifetime 86400
    tunnel-group HW-CLIENT-GROUPR type ipsec-ra
    tunnel-group HW-CLIENT-GROUP general-attributes
     address-pool HW-CLIENT-GROUP-POOL
     default-group-policy HW-CLIENT-GROUP
    tunnel-group HW-CLIENT-GROUP ipsec-attributes
     pre-shared-key *******
    group-policy HW-CLIENT-GROUP internal
    group-policy HW-CLIENT-GROUP attributes
     password-storage enable
     split-tunnel-policy tunnelspecified
     split-tunnel-network-list value cisco_splitTunnelAcl
     nem enable

  • TS1843 I am getting the following error messages- No DNS Server and Double SAT.  Can anyone walk me through a fix?

    Airport Express- No internet connection. I am getting the following error messages- No DNS Server and Double SAT.  Can anyone walk me through a fix

    Try putting these numbers in Network>TCP/IP>DNS Servers, for the Interface you connect with...
    208.67.222.222
    208.67.220.220
    Then Apply. For 10.5/10.6 Network, highlight Interface>Advanced button>DNS tab>little + icon.
    Might also put them in the Airport Express, no idea what Double SAT is!?

  • Dns server and client in java

    Hello!
    Im trying to code a dns server and client in java.
    It`s supposed to be a very simple one. The server should just resolve the query, started from the client.
    Where can I find any code samples? It would really help me to get started.
    Thank you very much!
    Anne

    Do you have some code ?

  • Internal update server and flash player 12

    We've been using an internal update server and a deployed mms.cfg to point internal client machines to a local webserver hosting Flash Player updates extracted from the background update .cab file, as detailed in the Administration Guide.
    This has been working well for Windows & OS X clients.
    For Flash Player 12, I've created a "12" folder at the same level as the 11 folder:
    https://servername.domain/pub/flashplayer/update/current/sau/12/xml/version.xml
    However, clients (that are currently running 11) are looking for:
    https://servername.domain/pub/flashplayer/update/current/sau/11/xml/version.xml
    So I copied the "12" folder to the "11" folder and manually triggered the scheduled task on a couple of clients and they've grabbed the newer version (except for the plugin-based browser, which haven't updated and are still using 11.9.*).
    My flashinstall.log shows the following:
    <code>
    2014-1-15+16-40-27.23 [info] 1620
    2014-1-15+16-41-57.757 [info] 1628 server.domain
    2014-1-15+16-41-57.820 [info] 1629 server.domain
    2014-1-15+16-41-57.820 [info] 1614
    2014-1-15+16-41-57.820 [info] 1615
    2014-1-15+16-41-57.820 [info] 1618
    2014-1-15+16-41-57.820 [info] 1619 1063
    2014-1-15+16-41-57.835 [info] 1628 server.domain
    2014-1-15+16-41-57.835 [info] 1629 server.domain
    2014-1-15+16-41-57.835 [info] 1614
    2014-1-15+16-41-57.835 [info] 1615
    2014-1-15+16-41-57.835 [info] 1618
    2014-1-15+16-41-57.835 [info] 1608
    2014-1-15+16-41-57.835 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+16-41-57.835 [info] 1604
    2014-1-15+16-41-57.960 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/patch.xml
    2014-1-15+16-41-57.960 [warning] 1445
    2014-1-15+16-41-57.960 [warning] 1442
    2014-1-15+16-41-57.960 [info] 1601
    2014-1-15+16-41-58.507 [error] 1215 32
    2014-1-15+16-41-58.507 [warning] 1416 6
    2014-1-15+16-41-58.507 [error] 1300 183
    2014-1-15+16-41-58.507 [info] 1612
    2014-1-15+16-41-58.507 [info] 1620
    2014-1-15+16-41-59.367 [error] 1226 1062
    =O====== M/12.0.0.38 2014-01-15+16-40-26.961 ========
    0000 [I] 00000010 FlashPlayerInstaller.exe -install -iv 9
    0001 [W] 00001036 Software\Macromedia\FlashPlayer\SafeVersions/12.0 2
    0002 [I] 00000011 1
    0003 [I] 00000020 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    0004 [I] 00000013 C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_38.ocx
    0005 [I] 00000015 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_12_0_0_38_ActiveX.exe
    0006 [I] 00000016 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_12_0_0_38_ActiveX.dll
    0007 [I] 00000023 C:\Windows\SysWOW64\Macromed\Flash\activex.vch
    0008 [I] 00000019 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    0009 [W] 00001024 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 183
    0010 [W] 00001024 C:\Windows\SysWOW64\FlashPlayerApp.exe 183
    0011 [I] 00000021 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    0012 [W] 00001106
    0013 [W] 00001106
    0014 [W] 00001024 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 183
    0015 [I] 00000012
    =X====== M/12.0.0.38 2014-01-15+16-42-00.945 ========
    </code>
    My questions:
    1) Is this the expected method for getting version 11 to upgrade to 12 without much intervention?
    2) What's triggering the error codes - the hack-ish way I've forced the update, or something else?
    3) What knock-on effects will the Flash Player version renumbering have on the local webserver deployment method?  And is it documented anywhere?
    Thanks

    Hi Maria,
    The rest of the install log is below and it does install the plugin later and the log is clean of errors thereafter. 
    I created "12" because the previous install guide noted that the folder should be named for the major version and I assumed that guidance still held (though thinking about it you've abandoned that distinction with the recent re-numbering).
    Thanks
    <log>
    <snip idential entries for brevity>
    <At this point the client is looking in the "11" folder at the 11.9.* version>
    2014-1-15+15-45-8.728 [info] 1614
    2014-1-15+15-45-8.728 [info] 1615
    2014-1-15+15-45-8.728 [info] 1618
    2014-1-15+15-45-8.728 [info] 1608
    2014-1-15+15-45-8.728 [info] 1612
    2014-1-15+15-45-8.728 [info] 1620
    2014-1-15+15-45-8.728 [info] 1604
    <Around this time, the contents of the "12" directory get moved to the "11" directory after it becomes clear from webserver logs that the client is explicitly looking for the 11 directory.>
    2014-1-15+16-4-0.155 [info] 1628 server.domain
    2014-1-15+16-4-0.499 [info] 1629 server.domain
    2014-1-15+16-4-0.561 [info] 1614
    2014-1-15+16-4-0.561 [info] 1615
    2014-1-15+16-4-0.561 [info] 1618
    2014-1-15+16-4-0.561 [info] 1619 1063
    2014-1-15+16-4-0.577 [info] 1628 server.domain
    2014-1-15+16-4-0.577 [info] 1629 server.domain
    2014-1-15+16-4-0.577 [info] 1614
    2014-1-15+16-4-0.577 [info] 1615
    2014-1-15+16-4-0.577 [info] 1618
    2014-1-15+16-4-0.577 [info] 1608
    2014-1-15+16-4-0.577 [info] 1604
    2014-1-15+16-4-0.640 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+16-4-0.905 [warning] 1411
    2014-1-15+16-4-0.905 [warning] 1409
    2014-1-15+16-4-0.905 [info] 1612
    2014-1-15+16-4-0.905 [info] 1620
    2014-1-15+16-15-45.5 [info] 1628 server.domain
    2014-1-15+16-15-45.239 [info] 1629 server.domain
    2014-1-15+16-15-45.302 [info] 1614
    2014-1-15+16-15-45.302 [info] 1615
    2014-1-15+16-15-45.302 [info] 1618
    2014-1-15+16-15-45.302 [info] 1619 1063
    2014-1-15+16-15-45.317 [info] 1628 server.domain
    2014-1-15+16-15-45.317 [info] 1629 server.domain
    2014-1-15+16-15-45.317 [info] 1614
    2014-1-15+16-15-45.317 [info] 1615
    2014-1-15+16-15-45.317 [info] 1618
    2014-1-15+16-15-45.317 [info] 1608
    2014-1-15+16-15-45.317 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+16-15-45.333 [info] 1604
    2014-1-15+16-15-45.395 [warning] 1411
    2014-1-15+16-15-45.395 [warning] 1409
    2014-1-15+16-15-45.395 [info] 1612
    2014-1-15+16-15-45.395 [info] 1620
    2014-1-15+16-30-31.253 [info] 1628 server.domain
    2014-1-15+16-30-31.253 [info] 1629 server.domain
    2014-1-15+16-30-31.254 [info] 1614
    2014-1-15+16-30-31.254 [info] 1615
    2014-1-15+16-30-31.254 [info] 1618
    2014-1-15+16-30-31.262 [info] 1608
    2014-1-15+16-30-31.269 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+16-30-31.754 [warning] 1411
    2014-1-15+16-30-31.754 [warning] 1409
    2014-1-15+16-30-31.754 [info] 1612
    2014-1-15+16-30-31.754 [info] 1620
    2014-1-15+16-32-25.56 [info] 1628 server.domain
    2014-1-15+16-32-25.56 [info] 1629 server.domain
    2014-1-15+16-32-25.56 [info] 1614
    2014-1-15+16-32-25.71 [info] 1615
    2014-1-15+16-32-25.71 [info] 1618
    2014-1-15+16-32-25.71 [info] 1608
    2014-1-15+16-32-25.71 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+16-32-25.228 [warning] 1411
    2014-1-15+16-32-25.228 [warning] 1409
    2014-1-15+16-32-25.228 [info] 1612
    2014-1-15+16-32-25.228 [info] 1620
    2014-1-15+16-40-24.867 [info] 1628 server.domain
    2014-1-15+16-40-24.867 [info] 1629 server.domain
    2014-1-15+16-40-24.867 [info] 1614
    2014-1-15+16-40-24.867 [info] 1615
    2014-1-15+16-40-24.867 [info] 1618
    2014-1-15+16-40-24.867 [info] 1608
    2014-1-15+16-40-24.867 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+16-40-25.195 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/patch.xml
    2014-1-15+16-40-25.195 [warning] 1445
    2014-1-15+16-40-25.195 [warning] 1442
    2014-1-15+16-40-25.195 [info] 1600
    2014-1-15+16-40-26.930 [info] 1602
    2014-1-15+16-40-26.930 [info] 1609
    2014-1-15+16-40-26.930 [info] 1612
    2014-1-15+16-40-27.23 [info] 1620
    2014-1-15+16-41-57.757 [info] 1628 server.domain
    2014-1-15+16-41-57.820 [info] 1629 server.domain
    2014-1-15+16-41-57.820 [info] 1614
    2014-1-15+16-41-57.820 [info] 1615
    2014-1-15+16-41-57.820 [info] 1618
    2014-1-15+16-41-57.820 [info] 1619 1063
    2014-1-15+16-41-57.835 [info] 1628 server.domain
    2014-1-15+16-41-57.835 [info] 1629 server.domain
    2014-1-15+16-41-57.835 [info] 1614
    2014-1-15+16-41-57.835 [info] 1615
    2014-1-15+16-41-57.835 [info] 1618
    2014-1-15+16-41-57.835 [info] 1608
    2014-1-15+16-41-57.835 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+16-41-57.835 [info] 1604
    2014-1-15+16-41-57.960 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/patch.xml
    2014-1-15+16-41-57.960 [warning] 1445
    2014-1-15+16-41-57.960 [warning] 1442
    2014-1-15+16-41-57.960 [info] 1601
    2014-1-15+16-41-58.507 [error] 1215 32
    2014-1-15+16-41-58.507 [warning] 1416 6
    2014-1-15+16-41-58.507 [error] 1300 183
    2014-1-15+16-41-58.507 [info] 1612
    2014-1-15+16-41-58.507 [info] 1620
    2014-1-15+16-41-59.367 [error] 1226 1062
    ?=O====== M/12.0.0.38 2014-01-15+16-40-26.961 ========
    0000 [I] 00000010 FlashPlayerInstaller.exe -install -iv 9
    0001 [W] 00001036 Software\Macromedia\FlashPlayer\SafeVersions/12.0 2
    0002 [I] 00000011 1
    0003 [I] 00000020 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    0004 [I] 00000013 C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_38.ocx
    0005 [I] 00000015 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_12_0_0_38_ActiveX.exe
    0006 [I] 00000016 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_12_0_0_38_ActiveX.dll
    0007 [I] 00000023 C:\Windows\SysWOW64\Macromed\Flash\activex.vch
    0008 [I] 00000019 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    0009 [W] 00001024 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 183
    0010 [W] 00001024 C:\Windows\SysWOW64\FlashPlayerApp.exe 183
    0011 [I] 00000021 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    0012 [W] 00001106
    0013 [W] 00001106
    0014 [W] 00001024 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 183
    0015 [I] 00000012
    =X====== M/12.0.0.38 2014-01-15+16-42-00.945 ========
    2014-1-15+17-4-0.153 [info] 1628 server.domain
    2014-1-15+17-4-0.232 [info] 1629 server.domain
    2014-1-15+17-4-0.232 [info] 1614
    2014-1-15+17-4-0.247 [info] 1615
    2014-1-15+17-4-0.247 [info] 1618
    2014-1-15+17-4-0.247 [info] 1619 1063
    2014-1-15+17-4-0.263 [info] 1628 server.domain
    2014-1-15+17-4-0.263 [info] 1629 server.domain
    2014-1-15+17-4-0.263 [info] 1614
    2014-1-15+17-4-0.263 [info] 1615
    2014-1-15+17-4-0.263 [info] 1618
    2014-1-15+17-4-0.263 [info] 1608
    2014-1-15+17-4-0.263 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+17-4-0.263 [info] 1604
    2014-1-15+17-4-0.528 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/patch.xml
    2014-1-15+17-4-0.528 [warning] 1445
    2014-1-15+17-4-0.528 [warning] 1442
    2014-1-15+17-4-0.528 [info] 1601
    2014-1-15+17-4-2.857 [info] 1602
    2014-1-15+17-4-2.857 [info] 1610
    2014-1-15+17-4-2.857 [info] 1612
    2014-1-15+17-4-2.935 [info] 1620
    2014-1-15+17-5-31.732 [error] 1226 1062
    ?=O====== M/12.0.0.43 2014-01-15+17-04-02.872 ========
    0000 [I] 00000010 FlashPlayerInstaller.exe -install -iv 9
    0001 [I] 00000011 1
    0002 [I] 00000020 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    0003 [W] 00001036 Software\Mozilla\Firefox\extensions/Plugins 2
    0004 [W] 00001036 Software\Mozilla\Mozilla Firefox\extensions/Plugins 2
    0005 [W] 00001036 Software\Opera Software/Last CommandLine 2
    0006 [W] 00001036 Software\Opera Software/Last CommandLine 2
    0007 [W] 00001036 Software\Opera Software/Plugin Path 2
    0008 [W] 00001036 Software\Opera Software/Plugin Path 2
    0009 [I] 00000014 C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll
    0010 [I] 00000015 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_12_0_0_43_Plugin.exe
    0011 [I] 00000024 C:\Windows\SysWOW64\Macromed\Flash\plugin.vch
    0012 [I] 00000017 C:\Windows\SysWOW64\Macromed\Flash
    0013 [I] 00000022 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
    0014 [I] 00000019 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    0015 [W] 00001024 C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 183
    0016 [W] 00001024 C:\Windows\SysWOW64\FlashPlayerApp.exe 183
    0017 [I] 00000021 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    0018 [W] 00001106
    0019 [W] 00001106
    0020 [W] 00001024 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 183
    0021 [I] 00000012
    =X====== M/12.0.0.43 2014-01-15+17-05-34.091 ========
    2014-1-15+18-4-0.204 [info] 1628 server.domain
    2014-1-15+18-4-0.204 [info] 1629 server.domain
    2014-1-15+18-4-0.204 [info] 1614
    2014-1-15+18-4-0.204 [info] 1615
    2014-1-15+18-4-0.220 [info] 1618
    2014-1-15+18-4-0.220 [info] 1619 1063
    2014-1-15+18-4-0.220 [info] 1628 server.domain
    2014-1-15+18-4-0.220 [info] 1629 server.domain
    2014-1-15+18-4-0.220 [info] 1614
    2014-1-15+18-4-0.220 [info] 1615
    2014-1-15+18-4-0.220 [info] 1618
    2014-1-15+18-4-0.220 [info] 1608
    2014-1-15+18-4-0.235 [info] 1604
    2014-1-15+18-4-0.407 [info] 1630 /pub/flashplayer/update/current/sau/11/xml/version.xml
    2014-1-15+18-4-0.689 [info] 1612
    2014-1-15+18-4-0.689 [info] 1620
    2014-1-15+19-4-0.157 [info] 1628 server.domain
    2014-1-15+19-4-0.157 [info] 1629 server.domain
    2014-1-15+19-4-0.157 [info] 1614
    2014-1-15+19-4-0.157 [info] 1615
    2014-1-15+19-4-0.157 [info] 1618
    2014-1-15+19-4-0.157 [info] 1619 1063
    <snip identical entries for brevity>
    </log>

  • 10.5 server and Joomla URL issue

    Sorry not sure if this is the correct location however I hope someone can help.
    I'm running a newer Xserve with 10.5 and have Joomla installed. I'm trying all seems to be working but can only access my site via IP with the port number Example: 172.0.0.2:8888
    I'd like it to be: internal.domainname.com
    It does appears that I need to to make this change in joomla php config file. However I'd would like to be able to do it in server admin> Web > Sites.
    I should be able to create a virtual server there including port number as well as any alis's. But every way I've tryed it it doesn't seem to want to pick it up. Almost like Joomla is a stand alone and not effected my server admin?
    I also have had this issue with other applications I'm running on the server. FileMaker Pro Advanced server, and WebHelpDesk. I'd like to be able to do same thing but having same issue.
    So in all the cases I am able to access the various business applications with and IP and a port number but want to setup virtual servers to be able to access with an alis such as (internal.mydomain.com) I understand about DNS and all the network requirements but when setting up a DNS entry you can't include a port number, so I need to be able to create a virutal server on my xserve.
    Thanks for read any advice would be helpful, thanks

    DNS can be used to alias your server to a virtual host using a cname. The virtual host domain can be used to setup a web site for apache service. Then route to another service from apache using reverse proxy to get from incoming port 80 or 443 to the other service on the working url or IP address with port number.
    There are many forum entries on setting this up. As well as using the reference guide for web technologies at http://www.apple.com/server/macosx/resources/
    Redirecting for achieving the same ends is also discussed.
    HTH,
    Harry

  • How to set up DNS behind a NAT router...

    I am trying to configure DNS in Panther Server as the SOA for my domains and as a LAN name server. I've read several explainations about setting up DNS including technical document 106853 "How to set up DNS in a NAT environment" which says:
    Note: For Mac OS X Server 10.3 or later, you should use the Server Admin
    application to configure DNS and NAT. Please see the Network Services
    Administration Guide for additional information.
    Seeing how picky BIND is, this sounds like a good idea, except I can't configure views like that.
    Questions:
    1) What happens if I create an A record in my main domain for newmac.mydomain.com-->10.0.1.2? People outside the LAN can't get to it, right?
    2) Can I create really simple names for the LAN like newmac-->10.0.1.2?
    Thanks!

    You can use "system-config-network" command to configure your DNS configuration.

  • Dns server in solaris 10 issues

    Hello,
    I have configured /etc/resolv.conf with the following:
    nameserver 8.8.8.8
    "nslookup www.yahoo.com" works fine to get the IP, but "ping www.yahoo.com" failed with with unknown host.
    Did I miss something to configure my dns server?
    Thanks for the help in advance.
    Tom

    You haven't configured a DNS server. You've told nslookup which DNS server to use to resolve a name to an address.
    Try:
    http://www.convery.me.uk/blog/?p=16
    for assistance with your issue.
    Don't forget that Solaris 10 uses both hosts and ipndoes. Later versions have these files linked together.
    alan

  • Do I need to run local DNS server for NAT/DHCP to work?

    Hello,
    I'm coming across all kinds of explanations how to set up a server for public access, having a static IP and a pointed domain, but I have a dynamic public IP and don't need the server to be accessible through a domain name. I just want all the computers in my office to connect to the web over 1 cable connection. I've used Gateway Setup Assistant to set up NAT and DHCP and DNS and what not, but it didn't work out of the box. After some bootpd.plist fixes I now have DHCP working, it's handing out IP addresses, but all LAN connected machines cannot get onto the web, only the server can.
    What am I doing wrong? Should I configure my DNS server differently? Or should it not be on at all, couldn't the local machines use my ISP's DNS servers?
    Currently DNS is configured like this:
    Settings are:
    accept recursive queries from the following networks: localnets
    forwarder IP addresses: (empty)
    Zones are:
    private. primary zone
    134.23.24.in-addr.arpa. reverse zone

    Though still a valid question for others I guess, I got my DNS working. The network preferences didn't have external DNS servers configured for the local network interface.

  • NB200-13J - No response from DNS server and Gateway

    Hi
    I have netbook NB200-13J with XP SP3. Its impossible to connect in the internet wireless and the error messages are
    THERE IS NO RESPONSE FROM DNS SERVER
    THERE IS NO RESPONSE FROM DEFAULT GATEWAY
    The connection with ethernet cable is ok withe the reltek adpter also the wirless adpter atheros ar9285 is enble, working properly and the signal from the modem router is strong.

    Hi abk55,
    From which program you receive this error message?
    Have you tried another browser, e. g. Firefox or Opera?
    I assume it has something to do with your WLAN card or WLAN settings if the LAN cable works properly. So you should try updating the WLAN driver from the Toshiba website.
    Try also to disable the MAC address filter and use another encryption.

  • Problem with passive mode FTP server and NAT

    Hi,
    I have a problem with Passive mode FTP and NAT.
    I am trying to run both an FTP server and sharing the Internet connection via NAT. I have by the way specified the passive ports to use in ftpaccess (65000-65534). Everything works fine until someone tries to connect via Passive mode. I have tracked the problem down to the firewall and the rule that handles NAT.
    Firewall rule config without NAT:
    00001 allow udp from any 626 to any dst-port 626
    01000 allow ip from any to any via lo0
    12300 allow ip from any to any
    65535 allow ip from any to any
    Firewall rule config with NAT
    00001 allow udp from any 626 to any dst-port 626
    00010 divert 8668 ip from any to any via en1
    01000 allow ip from any to any via lo0
    12300 allow ip from any to any
    65535 allow ip from any to any
    So, passive ports do not work when NAT is on. If I turn it off, Passive ftp works like a charm.
    But how do I solve my problem? I have in my quest for the answer stumbled upon "-punch_fw" but do not know how to use it or if it even helps me at all?
    Best regards,
    Peter
    B&W G3 Mac OS X (10.4.5)

    Media/Lacrosse-1-tiny.3gp
    I can't find the file on your server.
    They may also need to edit the .htaccess file to allow the .3gp file extension be used. Call them.

  • Windows server 2012 as primary DC and DNS server and windows server 2003 as secondary DC and DNS

    Migration from windows server 2003 AD DC and DNS server to windows server 2012 R2,
    Cannot I set up Windows server 2012 R2 as primary DC and DNS  , windows server 2003 as secondary DC and DNS ? (for backup server when server 2012 fail, user can continue to login and access internet services)

    You can mix both as long as your Forest and Domain Functional level are Windows Server 2003. However, I would like to bring your attention to this blog about known problems when mixing DCs with Windows Server 2003 and 2012 R2 OS:
    http://blogs.technet.com/b/askds/archive/2014/07/23/it-turns-out-that-weird-things-can-happen-when-you-mix-windows-server-2003-and-windows-server-2012-r2-domain-controllers.aspx
    This posting is provided AS IS with no warranties or guarantees , and confers no rights.
    Ahmed MALEK
    My Website Link
    My Linkedin Profile
    My MVP Profile

  • Virtual Server and Nat

    Hello,
    I have a question reguarding the the combination between Vserver and NAT. Maybe this is due to the order of the operation. I have a virtual server with the server farm. So the first think to do is Load Balancing (IOS SLB) toward the N°2 real server. Then just only for a kind of traffic (tcp port 23 or something else) I want to nat the ip address of one real to another (destination nat). Is this possible?
    You can see tha attach for more detail.
    Thanks
    Ira

    if you want to forward the traffic to another ip for a specific port, why don't you create a new serverfarm with the new real server ip address and then create a new vserver to handle this particular traffic
    ie:
    serverfarm regular
    real x.x.x.x
    ins
    vserver regular
    vip x.x.x.x /0 any
    serverfarm regular
    inservice
    Then ADD
    serverfarm special
    real x.x.x.x <=== new real ip
    inservice
    vserver special
    vip x.x.x.x /0 tcp 23
    serverfarm special
    inservice
    This is the way to do it.
    Regards,
    Gilles.
    Thanks for rating.

  • Time Capsule and Linksys Router Issues

    The internet cable is connected to the WAN port and the Time Capsule is connected is to one of the ports of the Linksys router. I can successfully backup my MacPro and use the internet for Mail and Safari.
    I want to take advantage of the high speed ethernet performance of Time Capsule. However, I don't know if the Time Capsule is really faster than my Linksys router.  Where do I get this information? I suspect the Time Capsule is much faster because I just purchased the Time Capsule. The router is at least 5 years old.
    In spite my concern about the speeds of the Time Capsule and Linksys router, I tried to attach the Time capsule as recommended by Apple for a  "first time set up." It failed. The Time Capsule using the AirPort Utility cannot make a network connection. I reestablished the devices as given in paragraph one. WiFi runs again.

    Ethernet speed on your local network is determined by the slowest connected device which most likely will be the LinkSys router or your computer.

  • WSUS server and client configuration issues

    I just inherited WSUS from my predecessor (it was turned off because of a full disk) so I’m still learning how to use it. Turning it back on I changed where updates should come from, they were stored locally and now I’m pulling them down off of the Microsoft
    Update location. What I’m seeing is that I have a bunch of computers that WSUS “sees” but are showing “Failed or Needed” status. Unless I visit each machine and manually do the updates this status does not change. Additionally I have some client computers
    (Windows 7) that are not showing up as managed by WSUS. If I reading this right I’m running version Update Services 6.2.9200.16384 on Management Console 3.0 Version 6.2 (build 9200) on Windows Server 2012.
    How can I force WSUS to automatically update the “Failed and Needed” devices?
    How can I get those clients that are not being managed by WSUS to be managed?
    Some of the things that I have done so far on the server and clients are:
    Create a GPO (see attached for WSUS)
    wuauclt
    /detectnow
    wuauclt /reportnow
    wuauclt.exe /detectnow
    gpupdate /force after
    modifying the GPO
    I even ran the SolarWinds WSUS diagnostic (as a non-administrator) and got this as the output:
    # Solarwinds® Diagnostic Tool for the WSUS Agent # 1/23/2015
    Machine state
      User rights:  User does not have administrative rights (Administrator rights are not available)
      Update service status:  Running
      Background Intelligent Transfer service status:   
    Running
      OS Version:  Windows 8.1 Pro
      Windows update agent version:   7.9.9600.17489 (WU Agent is OK)
    Windows Update Agent configuration settings
      Automatic Update:    Enabled
      Options:  Automatically download and notify of installation
      Use WSUS Server: Not found (There is no such key)
      Windows Update Server:  Not found (There is no such key)
      Windows Update Status Server:  Not found (There is no such key)
      WSUS URLs are identical:  Values are empty
    WSUS Server Connectivity -- Connectivity check is impossible
    So, my questions are:
    What tool do I use to configure the client machine?
    How do I get WSUS to update my clients?
    Thanks
    Sam

    Steven,
    I'm pretty sure that this is not the right forum to discuss this in but just so we can close this case.
    On my computer I ran the command gpupdate /force I
    then rebooted my computer to make sure that the group policy would be updated. The first screen shot is from my domain controller and the second is from my computer. As you can see the Domain Controller has the correct settings but the local machine doesn't.
    Other parts of the DC GPO settings have worked so I'm somewhat comfortable that it is being propagated properly.

Maybe you are looking for