dns help for sub domain hosted on my lan

I have a sub domain hosted on my IP and directed to a web server.

From outside my LAN i can use the sub domain to connect to my web server.

Inside my LAN however when connecting to the sub domain i get the external
router web admin interface.

I tried creating a DNS record in my local DNS server (all machines on the
LAN use it).

The local dns record for the sub domain points directly to the web server
...... but not working ... yet.



Network setup like this:

sub domain
|
|
external router public ip
external router internal ip
|
| _ _ _ _ _ _ _ _ web server
|
|
internal router public ip
internal router internal ip
|
| _ _ _ _ _ _ _ _ dns server
|
|
lan clients


I just changed my external router .... previously i could connect to the web
service using the subdomain from the net and from the LAN .... how can i get
back to this ?

I guess the router could be configured to bounce INTERNAL web traffic to the
web server ? (i have changed the router web admin http service to use an new
port so they dont conflict.

Thanks for any help
Scott

Define "sub domain",...and how it is unique from your AD Domain or your Public
Domain. Nobody uses that term in this context, so I have no idea what you mean
by that.


--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com

The views expressed are my own (as annoying as they are), and not those of my
employer or anyone else associated with me.
-----------------------------------------------------


"Scott" <scott@> wrote in message news:(E-Mail Removed)...
>I have a sub domain hosted on my IP and directed to a web server.
>
> From outside my LAN i can use the sub domain to connect to my web server.
>
> Inside my LAN however when connecting to the sub domain i get the external
> router web admin interface.
>
> I tried creating a DNS record in my local DNS server (all machines on the LAN
> use it).
>
> The local dns record for the sub domain points directly to the web server
> ..... but not working ... yet.

cheers for reply.

domain = my_url.com (i.e fully qualified domain name hosted with ISP).

subdomain = mail.my_url.com (DNS A record hosted with ISP but directed to
my public IP)


its not related to AD domain - sorry I should have mentioned this.

I simply created an DNS A record with the ISP that hosts my_url.com.

The A record reads mail.my_url.com and uses my public IP address so all
traffic for this sub URL hits my external router.


Internal traffic on port 80 from my LAN to this sub URL displays the
external router admin screen.

External traffic on port 80 is forwarded correctly to my web server.



Hope i have explained a little better, sorry bout that.
Scott

"Scott" <scott@> wrote in message
news:O%(E-Mail Removed)...
> cheers for reply.
>
> domain = my_url.com (i.e fully qualified domain name hosted with ISP).
> subdomain = mail.my_url.com (DNS A record hosted with ISP but directed to my
> public IP)

Ok. That is a Host, not a subdomain domain.

> its not related to AD domain - sorry I should have mentioned this.
> I simply created an DNS A record with the ISP that hosts my_url.com.
>
> The A record reads mail.my_url.com and uses my public IP address so all
> traffic for this sub URL hits my external router.

No. You only do this on the ISP's DNS for the *Public*. Your LAN Clients do
*not* use the ISP's DNS.

Your internal AD/DNS needs to duplicate the same Zone manually but uses the
Private IP# of the resources,...not the public IP#..
The "A Record" is supposed to use the *Internal* IP#. The traffic from the LAN
Clients is supposed to go directly to the mail server machine.

You cannot make "u-turns" through a NAT device.


--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com

The views expressed are my own (as annoying as they are), and not those of my
employer or anyone else associated with me.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/IS...cessRules.html

Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/downlo...7/ts_rules.doc

Microsoft Internet Security & Acceleration Server: Guidance
http://www.microsoft.com/isaserver/t...dance/2004.asp
http://www.microsoft.com/isaserver/t...dance/2000.asp

Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp

Deployment Guidelines for ISA Server 2004 Enterprise Edition
http://www.microsoft.com/technet/pro...isaserver.mspx
-----------------------------------------------------

thanks Phillip.

(My A record is hosted with isp by the way.)

I tried creating an internal DNS A record yesterday but i could still not
browse to my "host" iternally .... today however its fine. I guess it just
take a while for the new DNS settings to flush ?

Thanks for your insight
Scott

dns flush sorted it for all machines ... thanks again for your help
scott

Yes, you can use "ipconfig /flushdns", or just wait till the Time-to-Live
expires and it refreshes itself.

You're welcomed Scott.

"Scott" <scott@> wrote in message news:(E-Mail Removed)...
> dns flush sorted it for all machines ... thanks again for your help
> scott
>