Internal and external DNS

Benard Onyach 1 Reputation point

Hello Team,
I have an AD domain with the DC being the DNS server and yet there is a website hosted externally. I need the internal resources to access the external resources to access the website but it keeps referring to the internal domain. Hence website not accessible while within the domain. How can I make the internal resource access the outside website?

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,497 questions
0 comments No comments
{count} votes

3 answers

Sort by: Most helpful
  1. Dave Patrick 426.2K Reputation points MVP

    Sounds like you'll need a split brain deployment.

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments No comments

  2. Gloria Gu 3,891 Reputation points

    @BenardOnyach- 1926Hi,

    Thank you for posting in Q&A!

    If the AD domain name and website are totally the same, you have the following options to chose:

    1.Try to change the website into ""

    2.Install IIS role on DC, to redirect the Web request from "" to "" (however, for security, we don't recommand to install IIS on DC)

    3.Create an empty A DNS record under the forward lookup zone of "", to point to the IP of external website. (however, it will cause AD replication issues)

    4.Change the AD domain name

    Based on your situation, the easiest way is to modify the website code into "". If there is no way to modify the website code, you can only consider changing the domain name.

    This issue has been discussed before, but the results of the discussion are the same. You can look at similar posts on this issue:

    Hope you have a nice day : )


    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  3. Alaa Kalakech 10 Reputation points

    Run this command on your DCs;

    netsh interface portproxy add v4tov4 listenport=443 listenaddress=internalIP connectport=443 connectaddress=externalIP;

    this command forwards the requests of your employees to reach the website externally, and use this if you dont have exchange on-premises, SharePoint....

    0 comments No comments