John,
Don't know if I have the answer for you - but here goes.
Question: Are you pinging by -name- or by -IP address-?
Question: Is the "machine on the inside of the firewall" either one of
(a) a W2k box, or (b) a new Linux box?
If so - you might be a victim of "dynamic server list reordering".
This is especially annoying with W2k as it is the default behavior and
cannot be disabled (directly - that is)
This is a big problem witn win2k - that we went nuts with at work.
Let's assume this is true. (the Win2k, etc. box)
Lets say you have three DNS IP's programmed on the Win2K box:
1. An -internal- DNS at 172.16.1.1
2. An -external- DNS at 39.1.2.3
3. An -external- DNS at 39.1.2.4
(2 & 3 are provided by your up-stream provider)
here's the deal:
Win2k attempts to "optimize" the order of the DNS list. When you
attempt to resolve a name - it tries the internal one first. If it does
not answer within ONE SECOND, it moves that number to the bottom of the
list, and tries the 2nd one. The 2nd one is a huge beast machine, and
answers promptly. Therefore the 2nd address stays at the top of the
list (or maybe it eventually goes to the bottom)
If the 2nd one takes longer than one second, it too goes to the bottom
of the list, and the 3rd one becoems the top one.
And so forth. BTW, an answer of "I have no idea who that is" is still
an answer, and the DNS still stays at the top.
With Win2k, you should NEVER point to a DNS server OUTSIDE your
firewall, unless you do not have a DNS inside. What I do is remove the
two external references.
Jim
john simmons wrote:
> OK gang... weird one.
>
> STN has been running great for months with no attention. We had a
> problem with our domain name on our company web site. Once our domain
> registration was straightened out we still had problems getting to our
> company web site. Pings to the correct IP address timed out. I rebuilt
> the STN diskette using a freshly formatted floppy- still same problem.
> The problem comes and goes without any pattern. A computer connected on
> the public side of the STN box always pings our website, yet inside the
> firewall it sometimes doesn't.
>
> Any ideas? I'm fresh out and tired of formatting floppies and building
> diskettes.
>
> John Simmons
> Roger's Two Way Radio
> www.rogerstwoway.com
>
============================================================
Why should you get a NextCard? It's simple. NextCard Visa
will tailor an offer specifically for you in only 30 seconds!
Rates as low as 2.99% Intro or 9.99% Ongoing APR. Apply Now!
http://click.topica.com/caaabQEbz8Rp2bAfyICf/NextCard
============================================================
--
Visit http://www.ShareTheNet.com for info about ShareTheNet
Visit http://www.topica.com/lists/sharethenet for info about this list
To Unsubscribe send email to: [EMAIL PROTECTED]
==^================================================================
EASY UNSUBSCRIBE click here: http://topica.com/u/?bz8Rp2.bAfyIC
Or send an email To: [EMAIL PROTECTED]
This email was sent to: [email protected]
T O P I C A -- Register now to manage your mail!
http://www.topica.com/partner/tag02/register
==^================================================================
