×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Unable to access Internal sites from Internal

Unanswered Question

Hello,

Inside users can start connections and surf the web fine. However, they cannot access web server sites located internally. The internal sites can be accessed fine externally. DNS servers reside externally. It appears the internal sites resolve the site's internal address correctly, then die. Infact, a webserver cannot pull up it's own address or a site of a server next to it, but can hit any site outside. DNS issue?

Thanks!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
hiepnguyen Wed, 10/17/2001 - 14:19
User Badges:

Yes this is a DNS issue. What you have to do is create a internal DNS server to serve your internal network to your websites located behind the firewall. Make usre you set your workstations with the internal DNS sever first then the external DNS. Hope this helps.

jscinocca Wed, 10/17/2001 - 14:31
User Badges:

if you are using a PIX Firewall, just issue some alias commands, and your done....

jscinocca Thu, 10/18/2001 - 15:17
User Badges:

alias (inside) "InT_IP" "Ext_IP" 255.255.255.255


Set the servers DNS address to a server on the outside. Do an nslookup and look what you see

The PIX does the work for you

rrbleeker Fri, 10/19/2001 - 07:48
User Badges:

From a security point of view you should use the solution wiht 2 seperate DNS servers. This would comply with the 'Defense In-Depth' approach. Using a single DNS forces you to reveal more information that you should.

Actions

This Discussion