Craig
Tue Dec 09 20:04:15 CST 2003
Okay sounds all good.
We need to see where the point of failure is.
Have you tried connecting a PC between the server and router and seeing if
it can do a DNS query though ISA?
Alternately does it work if you allow all traffic through ISA? (This is only
for testing not as permeant solution).
"Robert" <bob@bob.net> wrote in message
news:OB%23E6mivDHA.1872@TK2MSFTNGP09.phx.gbl...
> Craig,
>
> The router is forwarding both UDP and TCP. The DNS server is listening on
> all interfaces as well. ISA of course is only listening on external
> interface.
>
> Bob
> "Craig Iedema" <ciedema@yahoo.com.au> wrote in message
> news:elRVH%23fvDHA.3532@TK2MSFTNGP11.phx.gbl...
> > That s/b
> >
> > And is the DNS server listening on all ports or just the internal port?
> >
> >
> > "Craig Iedema" <ciedema@yahoo.com.au> wrote in message
> > news:OhHE$1fvDHA.2444@TK2MSFTNGP12.phx.gbl...
> > > So you have setup ICW rules for the following
> > > send recieve for UDP on port 53 (for lookups)
> > > recieve send for UDP on port 53 (for queries)
> > > TCP port 53 for Zone Transfers.
> > >
> > > Also on the router you are you using port forwarding? If so are you
> > > forwarding both TCP and UDP packets?
> > >
> > > And is the server listening on all ports or just the internal port?
> > >
> > >
> > >
> > > "Robert" <bob@bob.net> wrote in message
> > > news:O8du$pfvDHA.3496@TK2MSFTNGP11.phx.gbl...
> > > > yes...dns.mydomain.com and dns2.mydomain.com. dns.mydomain.com is
the
> > > > server in question. dns2.mydomain.com is a second SBS server. The
> > second
> > > > one is currently answering requests.
> > > >
> > > > "Craig Iedema" <ciedema@yahoo.com.au> wrote in message
> > > > news:u$7RcJfvDHA.3744@TK2MSFTNGP11.phx.gbl...
> > > > > Just to double check, when you a whois for mydomain.com are the
> > correct
> > > > name
> > > > > servers listed?
> > > > >
> > > > >
> > > > > "Robert" <bob@bob.net> wrote in message
> > > > > news:e4zYVMevDHA.3436@tk2msftngp13.phx.gbl...
> > > > > > Hosting a website on SBS2000. I'm also running DNS server.
> > However,
> > > > > > external clients can't resolve address. I can nslookup
> > > www.mydomain.com
> > > > > > dns.mydomain.com and get the address. Users internal to the
next
> > work
> > > > can
> > > > > > resolve addresses in the DNS, such as dns, mail, www. I have
> server
> > > > > > publishing rules for DNS Query and DNS Zone Transfer Server in
ISA
> > as
> > > > well
> > > > > > as packet filters as well as the DNS Filter. There is a router
in
> > > front
> > > > of
> > > > > > the server, however the ISA server logs reveal that packets are
> > > getting
> > > > > > through. I'm at a complete loss now. I've tried a variety of
> > > > > > configurations and followed instructions at
> > > > > >
> > > >
> >
http://www.microsoft.com/serviceproviders/whitepapers/isp_dns_config.asp.
> > > > > > Where am I going wrong?
> > > > > >
> > > > > > Robert
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> >
>
>