1

I have just changed the bindings to use SSL for a website hosted in IIS on an AD Domain Controller.

The new binding is IP: all unassigned - Hostname: site.domain.com - Port: 443

I can access this new domain perfectly via the internet using https://site.domain.com but when I attempt to load it locally (RDP into the server) I get page cannot be displayed.

I have not made any changes to the local DNS (the server is set to use the local DNS), which is suspect may be related but even so, a ping to site.domain.com resolves to the correct IP address.

I am unfortunately limited to one binding for this particular site (limitation with the application).

In short, remote loads but local doesn't.

Thanks

ping traces from remote and local machines

Ant Swift
  • 133
  • 6
  • Does ping site.domain.com really resolve to "correct" IP address (the one you get when you run ipconfig on your web server? – Dusan Bajic Sep 30 '14 at 13:35
  • Hi @dusan.bajic. Yes both the server and my local machine resolve to the external ip address of the server, x.x.x.108. I've added an image showing ping traces with the info. – Ant Swift Sep 30 '14 at 14:16
  • What is the local address of IIS server (not the one you get when you try to ping it, but the one that you get as an output of ipconfig command on webserver? – Dusan Bajic Sep 30 '14 at 15:55
  • The local IP address is 192.168.254.253. – Ant Swift Sep 30 '14 at 16:08
  • 1
    Read these answers: http://serverfault.com/questions/55611/loopback-to-forwarded-public-ip-address-from-local-network-hairpin-nat – Dusan Bajic Sep 30 '14 at 16:40
  • @dusan.bajic, the solution was to disable strict naming on the domain in question. http://blogs.technet.com/b/sharepoint_foxhole/archive/2010/06/21/disableloopbackcheck-lets-do-it-the-right-way.aspx. Add an answer since you deserve the rep. – Ant Swift Sep 30 '14 at 19:09
  • I really can't do that, I have almost no knowledge about that article's subject (and honestly fail too see how it relates to your question). But I believe that it is perfectly fine if you add an answer to your own question. – Dusan Bajic Sep 30 '14 at 19:23
  • You got me to the answer with the hairpin NAT term. That lead to disabling it – Ant Swift Sep 30 '14 at 19:39

0 Answers0