DNS and Windows 2003

I'm running Windows 2003 with AD and DNS. I have two NIC cards on this server seperating my networks (internal 192.168.x.x & public 65.242.x.x). I've registered my domain name (cnc-networks.com) and would like to host my own domain without any external DNS's.

by default windows created the (cnc-networks.local) domain in DNS without any reverse lookup zones so I had to create those entries and everything internal seems to be working. From any client I can run nslookup and it resolves ok. Externally is where I seem to be having problems. I created the (cnc-networks.com) domain along with the reverse lookup zones and added my MX record and host entry for my Exchange server 2000. I seem to be able to send mail but not receive any.

DNS:
Forward Lookup Zones:
cnc-networks.local
cnc-networks.com

Reverse Lookup Zones:
192.168.1.x Subnet
65.242.121.x Subnet

Question:
Should my external NIC card point to its own DNS IP or another DNS IP address?

How do I host my own DNS in order to be visible on the Net?

It seems you have exact same problems I had a few months ago.

- From DNS server/Forward Lookup Zone, the Name Servers should
be set as public IP. If you have a web server, the host (A)
record should also set with public IP.

- For the Mail server, you need to check:
+ Is POP3 is running?
+ FQDN defined correctly?
+ Also, depend on the setup of your Email software (i.e outlook)

This short answer might help.
PQN

All my NS's do have public IP's as well as my Web,mail, and so forth. When I run the DNS reports test I get a "No responce from your name servers" and I know they are there, I also used the recommended time settings that my registrar set. my MX record is in there as well and that never resolves according to the report....what am I doing wrong????



This Active directory and DNS bull**** is really pissing me off...I've used DNS with NT and that was a breeze but this AD and how it wants to seperate your networks, which is a good idea, is really hard to understand. MS never really explains anything in detail just enough so that you get yourself into some real tight spots and then you have no choice but to call them at 180$ an hour....bastards!

Thanks for everyones help here.....NOT!!!!!!!! I thought silent rage would respond and help me out but I guess only a select few are privilged enough.

I was waiting for PQN to respond. Since he got the jump and replied before I did, I didn't want to interupt him helping you. I'm polite like that. I intended to wait at least 24 hours for his reply.

"Should my external NIC card point to its own DNS IP or another DNS IP address?"

what do you mean by a nic pointing to an IP? A nic can have multiple IP addresses associated with it.

"How do I host my own DNS in order to be visible on the Net?"

You need to register a domain first. Then at your domain's registrar you need to register name server hosts to point them to an IP in the registry. Then you assign these registered name servers as the hosts for your domain.

Any other questions?

"I guess only a select few are privilged enough."

If ya scroll down a bit, you'll see that it is a select *most* that are privilaged enough. Very rarely do I ignore a post. Happens sometimes for various reasons. Nothing to do with privilage though.

Hi,

All of my above messages are from SilentRage, who helped me out months ago on one of threads here.

My knowlegde about DNS is still very limited. Just try to be helpful But I am not

Good luck.

I've registered my domain name already as I stated above (cnc-networks.com) and I've also registered my NS's with them as well, they point to my public IP on my DNS server.

from reading some of these posts I take it that my own DNS server should point to it's own DNS IP (my external public IP address) which is the one thats registered as my NS (ns1 and ns2.cnc-networks.com), is this correct?

now I'm not sure what you mean by "Then you assign these registered name servers as the hosts for your domain." Do you mean add a host entry (A) as in ns1 in the lookup forward zone of cnc-networks.com? cause I've done that already?

Do I need to assign the host entry of ns1.cnc-networks.com as my primary server in the SOA line along with the hostmaster.cnc-networks.com? cause I've done that as well? I'm not sure what other steps I'm missing in order to make this work unless it's all wrong????

DNSreports that my NS's can't be contacted and DNScrawler says it times out....but if I ping that address i'm getting good responce times??? either by FQDN or IP address

any help would be appreciated...

heh, let's start over. I'm going to pretend that you just created a new topic and the entire message says:

"My domain cnc-networks.com doesn't work! why?"

It's always easier answering these kind of questions.

dig cnc-networks.com

Well it looks like we got a timeout at your server - and if that IP is correct, then we were blocked. Either a router or firewall is blocking UDP packets destined for port 53.