I have a server that hosts the web-browser interface to our Groupwise Email. It lives outside of the Astaro firewall (it's a big honkin Novell Border Manager server that another guy admins). We have the web server's (external) IP in our internal DNS (which is another box, not the Astaro). What I'd like to be able to do is tell our users that when they are on-campus they can simply type "webmail" in a browser and it will bring up the login screen for the email.
Umm, OK, that's not too clear. Let's try it with numbers. The Astaro's internal address is 10.0.0.1, its external address is 168.31.204.10, our internal DNS server is 10.0.0.2. The webmail server (webmail.reinhardt.edu) is 168.31.204.17, which is also the IP listed in the internal DNS.
Browsers behind Astaro can get to http://webmail.reinhardt.edu, but can't get to the simple address "webmail" - they get a page from Astaro/Squid saying "Unable to determine IP address from host name for webmail ", and from the Astaro dnsserver "Name Error: The domain name does not exist"
I'm guessing the problem is that named on Astaro doesn't know how to resolve the simple "webmail"- possibly because the external dns servers that Astaro forwards to won't resolve it, since it's not a fqdn. Do the "external" name servers really have to be "external" in the sense that they are on the Internet side of the firewall, or are the just "external" meaning they aren't running on the firewall itself? Could I point Astaro to forward requests to our internal DNS boxes?
Or is this even a DNS problem? Maybe it's a problem with Squid not creating a fqdn out of the simple "webmail" address when it tries to resolve it. The error page that I get, says "While trying to retrieve the URL: http://webmail/" blah blah blah.
If anyone is following me and can point me in the right direction, I'd greatly appreciate it.
BTW - the simple "webmail" address used to work fine when we were using a Sidewinder firewall.
