Announcement

Collapse
No announcement yet.

Exchange and DNS questions

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Exchange and DNS questions

    Good Day


    I have just installed exchange 2013 in my home environment for testing/learning purpose, and I was wondering if I can get some assistance please.


    My domain name is: internal.layer10.com. FYI: netbios is set to layer10
    I Have 3 severs which are: DC1, DC2 DC3-Exchange. DC1 is domain controller, DC2 is a SCCM 2012 server an DC3-Exchange is Exchange 2013 server.
    I have an outlook 2013 installed on my physical computer and I am trying to connect to my exchange server. My computer is not connected to virtual domain however I did change my dns settings so it points to DC1.

  • #2
    IP settings of my 3 servers are:
    DC1 = 192.168.1.170
    DC2= 192.168.1.175
    DC3-Exchange = 192.168.1.180

    Comment


    • #3
      Exchange questions:
      1) Trying to connect my outlook but it's not working. I assume i need to join my pc to my virtual domain first before it can connect as I don't have external records configure/ don't have a real domain?


      ​2) Do we need to create an A record for mail.internal.layer10.com? if yes then why please?

      3) how does this link work "mail.internal.layer10.coim/ecp"? I cant see any bindings in IIS or Exchange (external link is configured to https://mail.layer10.com). Also if change from mail to black it works too. Please explain how this function works.

      DNS question:

      I can't create any new A records in my dns. Restarted the server multiple times.

      I would greatly appreciate if someone could provide me some knowledge and explain my questions.

      Thanks in advance.
      Last edited by BlackSputnik; 21st November 2015, 22:35.

      Comment


      • #4
        and why i cant post my full post.. i need to break my topic to multiple replies.... WTF??? soo frustrating...

        Comment


        • #5
          Sounds like there is something wrong with your lab environment
          ​IMHO delete your existing lab and then have a look at this TLG

          http://blogs.technet.com/b/tlgs/arch...available.aspx

          Comment


          • #6
            Not sure about the posting bit - others don't seem to have issues

            Regarding DNS records:
            Internally, nothing needed - AD will take care of everything
            Externally, typically an A record mail.domain.com, autodiscover.domain.com plus point your MX records at your (static) public IP

            If you are making OWA and ECP public, you will also need an SSL certificate
            Tom Jones
            MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
            PhD, MSc, FIAP, MIITT
            IT Trainer / Consultant
            Ossian Ltd
            Scotland

            ** Remember to give credit where credit is due and leave reputation points where appropriate **

            Comment


            • #7
              Hi guys
              Thanks for your response.

              Let me re-write my eniroment so you could understand better.
              I have 3 servers: DC1 (actual DC controller), DC2 DC3-Exchange​. I created A CNAME record so its called SVRExchange now..

              My domain name is: internal.layer10.com however, my NETBIOS name is set to LAYER10.


              Here are some of my questions:

              1) I can't resolve SVRExchange from my physical desktop. Desktop is not part of this domain. Originally I wanted to configure my outlook using autodiscovery but I ran into these problems.
              2) When I ping DC1 I get an IPV6 response. I don't want that I want IPv4. I've checked network settings and it all set correctly.

              Can you please advise what can I do next? I have other questions but I want ot get these two sorted first. Also, would it be good idea to create a new zone in DNS as layer10.com? What is the benefit of implementing this approach? Thanks in advance again!



              FYI: Regarding this forum: I keep getting an error message saying: Invalid server response. Please try again.
              Last edited by BlackSputnik; 22nd November 2015, 10:59.

              Comment


              • #8
                Can you please post an IPCONFIG/ALL from your desktop client and from a domain member

                Where is the client getting its IP addresses from - the DC or a router?
                Tom Jones
                MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
                PhD, MSc, FIAP, MIITT
                IT Trainer / Consultant
                Ossian Ltd
                Scotland

                ** Remember to give credit where credit is due and leave reputation points where appropriate **

                Comment


                • #9
                  THE DHCP is configure from the router. My PC is pointing to my DC (192.168.1.170)

                  Ethernet adapter vEthernet (External Switch):

                  Connection-specific DNS Suffix . :
                  Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter
                  Physical Address. . . . . . . . . : 6C-F0-49-51-78-77
                  DHCP Enabled. . . . . . . . . . . : Yes
                  Autoconfiguration Enabled . . . . : Yes
                  Link-local IPv6 Address . . . . . : fe80::89d3:6e6f:6983:333f%3(Preferred)
                  IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
                  Subnet Mask . . . . . . . . . . . : 255.255.255.0
                  Lease Obtained. . . . . . . . . . : Friday, 13 November 2015 2:16:34 a.m.
                  Lease Expires . . . . . . . . . . : Tuesday, 24 November 2015 9:15:32 a.m.
                  Default Gateway . . . . . . . . . : 192.168.1.254
                  DHCP Server . . . . . . . . . . . : 192.168.1.254
                  DHCPv6 IAID . . . . . . . . . . . : 242020425
                  DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-5B-F2-2C-6C-F0-49-51-78-77
                  DNS Servers . . . . . . . . . . . : 192.168.1.170
                  NetBIOS over Tcpip. . . . . . . . : Enabled

                  C:\Users\Poshel>ping DC1

                  Pinging DC1 [fe80::d73:e0fb:4644:7178%3] with 32 bytes of data:
                  Reply from fe80::d73:e0fb:4644:7178%3: time<1ms
                  Reply from fe80::d73:e0fb:4644:7178%3: time<1ms
                  Reply from fe80::d73:e0fb:4644:7178%3: time<1ms
                  Reply from fe80::d73:e0fb:4644:7178%3: time<1ms

                  Ping statistics for fe80::d73:e0fb:4644:7178%3:
                  Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
                  Approximate round trip times in milli-seconds:
                  Minimum = 0ms, Maximum = 0ms, Average = 0ms

                  I've also included PING response from DC1.

                  Thank you.

                  Comment


                  • #10
                    What happens when you test the email autoconfiguration in Outlook (CTRL+Right Click on the tooltray icon)?
                    Any reason why you are not using your DC for DHCP?

                    Personally, I don't see any problem with IPv6 responses - the computers are talking - but what happens if you ping the IPv4 address of DC1?
                    Also have you tried disabling firewalls on all machines temporarily at least and re-trying
                    Tom Jones
                    MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
                    PhD, MSc, FIAP, MIITT
                    IT Trainer / Consultant
                    Ossian Ltd
                    Scotland

                    ** Remember to give credit where credit is due and leave reputation points where appropriate **

                    Comment


                    • #11
                      Hello

                      I've joined my spare laptop to the network and it seems to be working how it should be. I am also pining my DC from my original computer and I am receiving IP4 request. I still can't connect fully to exchange via outlook but I think it's because of the certificate (self signed certified) I don't have an external certified as this is only a test environment. Regarding DHCP I though I would leave that to the router. Again because it;s just my test network...

                      My other question was regarding my domain. I configured my domain as internal.layer10.com and my netbios is configued as LAYER10. So my question is; Is this a good wy to configure your domain? or should have i kept it simple (layer10.local and netbious as layer10.local). Do many people use this type of setup?

                      Thanks

                      Comment


                      • #12
                        The preferred practice is a public name (.com) rather than a private (.local or .corp)

                        Suggest you invest in a cheap public SSL cert as well, or you will have continual problems
                        Tom Jones
                        MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
                        PhD, MSc, FIAP, MIITT
                        IT Trainer / Consultant
                        Ossian Ltd
                        Scotland

                        ** Remember to give credit where credit is due and leave reputation points where appropriate **

                        Comment


                        • #13
                          certificates4exchange.com do very cheap certificates. I absolutely agree that Outlook Anywhere will have serious problems with self-signed certificates. As it's just a lab, you could also install the self signed certificate..
                          Please do show your appreciation to those who assist you by leaving Rep Point https://www.petri.com/forums/core/im.../icon_beer.gif

                          Comment


                          • #14
                            Hi Sorry for a late rely. You guys miss understood my question.

                            I don't want to buy a certificate. I just created a test lap for learning purpose. My original question was: I created a TEST domain as internal.layer10.com and my NETBIOS is set as Layer10. So when users login they dont need to type interna.layer10.com/username they can just type layer10/username.

                            So is this a good way to configure your network? Do many people do this?

                            Thanks.

                            Comment


                            • #15
                              That's the standard way of doing things. DCPROMO would have asked you for a fully qualified domain, and if you don't provide a netbios name, it will just give you one.
                              Please do show your appreciation to those who assist you by leaving Rep Point https://www.petri.com/forums/core/im.../icon_beer.gif

                              Comment

                              Working...
                              X