Roger
Sun Oct 26 19:15:12 CST 2003
Here is a article I have followed with success when I needed to allow a
Exchange Server to do DNS through a STandalone ISA Server and this worked.
Kind of looks like you might have already did this but just wanted to make
sure.
http://support.microsoft.com/default.aspx?scid=kb;en-us;291662&Product=ISAS
Roger Crawford
HTS
<anonymous@discussions.microsoft.com> wrote in message
news:00df01c39c0a$3cc008d0$a601280a@phx.gbl...
> Hi Steve
> Thanks for your prompt reply!
>
> Yes, Server B has the ISA server as its default gateway;
> I have also tried to disable the DNS Server Packet
> filter, but still have time outs. I've also got the "DNS
> lookup" packet filter enabled, since the
> ISA server is the primary DNS server for the local domain
> and has forwarding enabled, to resolve external names. Do
> you think making Server B the primary DNS server in the
> local domain will help?
>
> Thanks again.
> Roger
>
> >-----Original Message-----
> >Roger wrote:
> >
> >> Please help on the following:
> >> I have two servers: ISA server and server B.
> >> ISA server is also primary DNS server for the local
> >> domain and has packet filtering enabled; server B is
> the
> >> secondary DNS server for local domain but also has a
> >> second zone with the public IPs, for which it is
> >> authoritative server.
> >>
> >> I want to publish the public zone of server B, so that
> >> DNS queries from Internet get answered with the public
> >> zone info by server B.
> >>
> >> So I setup two server publish rules on ISA server: one
> >> for DNS Query Server default protocol and the other
> for
> >> DNS Zone Transfer Server default protocol. Both rules
> >> match the external ISA server IP to the server B
> internal
> >> IP. I thought this would be enough to publish server B
> >> info on the Internet. Nonetheless, I enabled the
> default
> >> packet filter rule for "DNS server".
> >>
> >> Then I test this with a dial-up connection and use
> >> nslookup (first, "server <external IP of ISA server>",
> >> and then queries). All queries TIME OUT.
> >>
> >> Any help would be greatly appreciated! Thanks.
> >> Roger
> >
> >Does server B point to the ISA for default gateway?
> >
> >Trying to use both packet filters and server publishing
> to apply to the
> >same protocol may also be causing you problems. I'd lose
> the DNS Server
> >packet filter, since that would only be relevant for
> allowing access to
> >the DNS Server on the ISA itself.
> >
> >--
> >Steve Foster [SBS MVP]
> >---------------------------------------
> >MVPs do not work for Microsoft. Please reply only to the
> newsgroups.
> >.
> >