Windows 2008 Server Router and Local Network

routingrraswindows-server-2008

I have a dual nic Windows 2008 Server setup with one public interface connected to the internet and another to a switch which is hooked into my LAN. I am running RRAS on the Windows 2008 box and doing NAT. The windows 2008 Server also runs IIS and hosts a small web site. All of my PCs on the LAN can access the internet just fine by means of the routing being done by the Windows 2008 RRAS service. The hosted website on the Windows 2008 Server box is accessible just fine from the outside, however when machines on the LAN attempt to access it via the external host name (ie: www.contoso.com) DNS resolves the address fine to the public IP, the browser starts to load the page but then everything just stops and the page is never rendered properly (a partial page render does occur). Accessing the site via the LAN using the local machine or ip address bound to the private nic causes the page to load successfully.

How do i fix this? I'm a developer by profession and I dable in networking (enough to be dangerous). Any help or guidance would be greatly appreciated.

Internet

   |   

   |                

 [SMC] — [public nic]

                          \

                           -[Win 2008 Server]

                          /

         [private nic]

              |

              |

              |

           [switch]

              |

              |  

             LAN  

Best Answer

Does your external NIC on the server have a public ip / connected straight to a router or does it go in to another router?

What is happening is (if your setup is as I expect above)-

Client looks up IP and sees that it is outside of your local network Client goes to its default gateway (your Windows 2008 Box) and says the ip. Windows 2008 says not here, looks up the default gateway and forwards the request to your router. Router says, that IP is mine, but then hangs and times out!

See if your router supports NAT Loop-back. Basically, NAT inside Windows 2008 is working, but the DNS IP is your public one and RRAS does not realise that it is it's own IP, and therefore doing its job and routing to its external network.

If you say the make/model of your router, I can help you further (if it supports it)

Another way that can get awkward is to install your own local DNS server on the Windows 2008 box and refer all clients to it (make it forward queries to your current DNS servers) and force in a zone for each of your domains that have your internal records.

... Or if you only have a handful of machines and the router does not support NAT Loop-back, and you understandably do not want to buy new hardware, insert your record in to the machines' host file. This is a surprisingly efficent technique and providing you have admin access to shares, you can script this VERY easily by just placing it in a directory then doing 

copy hosts \\\computer_name\c$\windows\system32\drivers\etc\hosts

And all done without a reboot!

Of course, the prefrence is just to enable NAT Loopback!

Anyway, hope I helped and this was the issue... Dreading your reply of "I only have a modem and the server is using a external ip in it's config!!"

Related Topic