[lug] Re: dns for non-internet visible network
Alberto Squassabia
asquassabia at yahoo.com
Sat Jan 1 16:13:21 MST 2005
My setup for a 192.168.1.0/24 DNS server is with a
fantasy domain name. The server's internal scope
covers all hosts on the private 192.168.1.0/24 subnet,
but relays all other inquiries to my ISP's DNS server.
Since all internal hosts on the private subnet are
NATted, there will never be a DNS inquiry coming from
outside for at least one reason: my firewall does not
allow it ;). My static IP is assigned to the firewall
itself, which in turn works as the traffic cop
managing a couple of private subnets, one for the
trusted private subnet (i.e. 192.168.1.0/24) and
another for the DMZ subnet. The machine on the DMZ
doed not use the local DNS server, but always resolve
through the ISP. So far this setup has worked as
intended.
alsq
__________________________________
Do you Yahoo!?
Yahoo! Mail - Find what you need with new enhanced search.
http://info.mail.yahoo.com/mail_250
More information about the LUG
mailing list