|
Home > Archive > IIS Server Security > February 2004 > DNS alias versus IP address
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
DNS alias versus IP address
|
|
| Olivier 2004-02-17, 11:34 pm |
| I'm encountering strange behaviour on installed web package
(outlooksoft) for IIS 5.
When entering the address for the application in the browser the
attempt succedes when using the ip-address and fails when using the
DNS alias.
ex: http://45.216.48.249/osoft/ is successful,
http://ap0210.bgc.net/osoft/ fails.
Directory secutrity settings: Basic Authentication & Integrated
windows authentication are active. (these settings are set by default
when installing the product)
When putting anonymous access active and removing the basic
authentication all works fine.
Can someone help why IP-address is OK and DNS alias fails.
| |
| Jeff Cochran 2004-02-18, 12:34 am |
| On 18 Feb 2004 04:35:12 -0800, olivier.lammens@belgacom.be (Olivier)
wrote:
>I'm encountering strange behaviour on installed web package
>(outlooksoft) for IIS 5.
>When entering the address for the application in the browser the
>attempt succedes when using the ip-address and fails when using the
>DNS alias.
>ex: http://45.216.48.249/osoft/ is successful,
>http://ap0210.bgc.net/osoft/ fails.
>Directory secutrity settings: Basic Authentication & Integrated
>windows authentication are active. (these settings are set by default
>when installing the product)
>When putting anonymous access active and removing the basic
>authentication all works fine.
>Can someone help why IP-address is OK and DNS alias fails.
Define "fails."
Jeff
| |
| Olivier 2004-02-18, 6:33 pm |
| jcochran.nospam@naplesgov.com (Jeff Cochran) wrote in message news:<40366b46.579817914@msnews.microsoft.com>...
> On 18 Feb 2004 04:35:12 -0800, olivier.lammens@belgacom.be (Olivier)
> wrote:
>
>
> Define "fails."
>
> Jeff
Fails means: This page can not be displayed
| |
| Jeff Cochran 2004-02-19, 2:35 am |
| On 18 Feb 2004 23:09:00 -0800, olivier.lammens@belgacom.be (Olivier)
wrote:
>jcochran.nospam@naplesgov.com (Jeff Cochran) wrote in message news:<40366b46.579817914@msnews.microsoft.com>...
>
>Fails means: This page can not be displayed
Many possibilities, the only IIS one is that you use host headers and
have an incorrect header or missing header for the domain name. The
other possibilities are your DNS is wrong, you have a host file that
is incorrect, your DNS points to an internal address that IIS doesn't
use, etc.
Tracing this is normal network name resolution stuff, NSLOOKUP, Ping,
etc.
Jeff
| |
| Karl Levinson [x y] mvp 2004-02-19, 11:34 am |
| I might also check the browser securing and zone settings. Some combination
of settings can intentionally forbid nt integrated authentication to sites
that are on the internet or that you did not tell your browser is part of
your internal network. The solution is either to add the DNS or domain name
to another zone such as Intranet zone, or change the checkbox that forbids
integrated authentication in that zone.
"Jeff Cochran" <jcochran.nospam@naplesgov.com> wrote in message
news:403cd499.672317491@msnews.microsoft.com...
> On 18 Feb 2004 23:09:00 -0800, olivier.lammens@belgacom.be (Olivier)
> wrote:
>
> Many possibilities, the only IIS one is that you use host headers and
> have an incorrect header or missing header for the domain name. The
> other possibilities are your DNS is wrong, you have a host file that
> is incorrect, your DNS points to an internal address that IIS doesn't
> use, etc.
>
> Tracing this is normal network name resolution stuff, NSLOOKUP, Ping,
> etc.
|
|
|
|
|