Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
I have just built a new domain controller, with windows 2003 smallbusiness server on it. this is the first dc (and only dc) in this domain and forrest. so it is the root. this domain was named with a .local extension. now im having trouble with dns. assuming because .local is not routable on the net? so im not sure what to do now, i need it to be a .net domain, is this something i can do without renaming the whole domain? i also want this to be my dns server, as this will be a very small domain. 1DC, and less than 5 clients. im so stuck, please help.
Don't confuse Active Directory domains with DNS domains. They're not necessarily the same thing. You don't have to have a 'routeable' domain name to provide services to local client machines.
What do you want to be accessible from the Internet? A web server, something like that? Your first step is buying a domain name (e.g. 'yourdomainname.net'). Then you'll configure the DNS server. If you don't know how to do this, run the Manage Your Server wizard. Click on 'read about server roles' and look at the 'DNS server role overview'. This will get you started setting up a DNS zone for your domain.
0 
Or Run the Connect to the Internet Wizard, in the Server Management tool, then follow the instructions
0
Where is that wizard, Dave_A? I'm not familiar with that in 2003 server. In any case, it doesn't sound like something that would be used to configure the DNS server.
0
i have purchased the domain (a .net) domain, as well as registered it as a name server. my DC of the domain already has dns configured. i have used nslookup and dcconfig, both tests passed perfectly. i have already run the configure your server wizard, and the DC is connecting to the internet fine, however i should tell you that my dc has 2 nics, one to a router for an existing network, which i only use for internet access. the other is plugged into a new hub, for the new domain. the new domain is strictly for hosting remote desktops. i want to keep it separate from my existing domain/network, as it is the network we use for webhosting, and i cant have the new remote desktop users logging on to my current domain, thus i am creating a new one. in the webhosting domain i have 2 name servers (unix), which i can use if need be. but would rather just have the new DC, as a DNS server for the new domain. now my client computers, after joining the newdoamin.local, can not see the internet. this is my problem. i am also using ISA as a firewall, on the new DC. but am fairly sure its not blocking me, as i have disabled it, and the clients still dont see the internet. i was thinking this could be because the domain has a .local instead of .net ? how can i have both? .local for internal network, and .net for external. not sure how to set that up.
thanks for the help, keep it coming !! :)
0
So is the problem that your internal computers can't access the Internet? Or that you need them to be members of your .net (not to be confused with dot.net ;) domain? Because they are two separate issues.
0
the problem is that my internal pc's cant access the internet. the internal pc's are just hosting remote desktop sessions, and they need to have the Internet available.
as far as being members of the .net, i am going to have one pc offsite for offsite backups, and this pc will need to connect to the domain (possibly via ftp) for backup transfers.Elizabeth
0
So by "access the internet" you mean "accept incoming remote desktop connections from the internet"? I'm sorry, but I am still not clear on what you are actually trying to do here.
For the offsite computer - it doesn't necessarily have to be a member of your AD domain. It doesn't have to be associated with your DNS domain either. If AD authentication is required for your backup solution, I would suggest setting up a VPN for the offsite computer to connect to. Otherwise, just treat it like any other Internet host and authenticate it by whatever means your backup solution provides. The ISA server might come in handy for that.
0
ok, this is my situation. i work for a webhosting company. we have a network and domain for webhosting. now we are going to offer remote desktops. so i have created a domain for that purpose. with 1 DC, and 1-5 client pc's. all the client pc's and the DC have static ip's. now after i built the server (DC for new domain) i joined my first client pc to the domain. but it cannot see the internet. i cant get my client pc to pick up an internet connection from my DC, they just need regular web browsing access. because once my users login to their remote desktop, i need them to have internet access via a web browser. so my DC had one nic connected to a router, that is directly connected to the net. and the other nic connected to a new hub, used for the new domain. so my client pc's have one nic, and it goes to the new hub, so you see there is no direct connection for them to the internet, as there is for the DC. so how do i setup that DC to allow users on the domain internet access. what would my default gateway on the clients be? would i point the clients DFGW to the ip of the external nic on the DC? (the nic plugged into the router)
now my DC having one connection the the existing router, has internet access, and is using the name servers from my existing webhosting network. and that nic has an internal static ip, the default gateway is set for the router that it is plugged into, and the name servers it points to are unix name servers we use in the webhosting network. this is how i allowed internet access to the DC. but i cant seem to configure my clients to pick up that access from the DC.
now if your wondering why im doing it like this, it is for security, i can not have my remote desktop users plugged into my webhosting network.
so this is where i am. trying to either use my existing dns servers (although they are unix) or make my DC also a DNS server for the new network. not sure which way to go. but falling fast. i really should have paid more attention to DNS before now. but here i am . lost. learning the hard way... :) thanks for all your help. i REALLY do appreciate it.
0
Thanks for the additional information. I think I understand what you are trying to do now.
As far as I can tell, domain names and DNS have nothing to do with the problem at hand. Ignore the domain thing for now, it will just confuse the issue.
Do you have public IP addresses for your client PCs? From your description it sounds like you don't. In that case, given how you have them networked, you are going to use the server (the DC) as a router. To set this up, run the Manage Your Server wizard and add a Remote Access/VPN role. This is pretty easy to do, and will result in your client PCs being able to access the Internet.
Setting things up this way will make it more difficult to run remote desktop sessions on the client PCs. Without individual public IP addresses for them, you will have to use port forwarding on the DC server (which is now a router too) to make the client PCs accessible from the Internet. This will work, but it is kind of a kludge and not really the best way to do it.
0
thats EXACTLY what im trying to do,( i dont know why i couldnt form it into words, i have been fighting with this for over a week, im going insane) i need the DC to act as a router, for my client pc's . they do have public ip's, so they should be accessable from the net. meaning they are 65.82.xx.x and not 192.168.1.x, i am going to go run the Manage Your Server wizard and add a Remote Access/VPN role right now, be back in a few minutes :)
0
No problem, Eliziabeth. I call that a brain block - when I'm so focused on problem X, I can't get past it to think about problems Y and Z :)
Router, not NAT server, (I don't recall offhand what these options are labelled in the wizard) is the type of remote access server you will want to configure. Good luck :)
0
well i have configured the remote access, but im not sure thats what i need. i looked into my isa server, and it is not allowing my clients, so now i have to battle with ISA 2004. shouldnt be too bad. but look for me screaming for help on the forum :)
thanks again for all of your help, :)Elizabeth
0  |
 |
 |
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
