Problem reaching my domain from internal network?
I have virtual IPs that are NATed to ports 80 and 443 of servers with private local IPs. I can reach these servers from outside using the domain name but when one of the internal server tries to reach another internal server using Domain name then it fails. What could be the cause of this?
What are the draw backs of NAT Reflection? I am wondering why it's disabled by default. I can't use split-dns not only because of the management overhead but also because there are so many client's and things change regularly.
NAT reflection is ugly as a general practice (why loop things through the firewall when you don't have to), and you lose the real source IP out of necessity since the replies have to go back via the firewall. Nothing wrong with using it though if that's the best option in your specific scenario.