[lug] Re: dns for non-internet visible network
asquassabia at yahoo.com
Sat Jan 1 16:13:21 MST 2005
My setup for a 192.168.1.0/24 DNS server is with a
fantasy domain name. The server's internal scope
covers all hosts on the private 192.168.1.0/24 subnet,
but relays all other inquiries to my ISP's DNS server.
Since all internal hosts on the private subnet are
NATted, there will never be a DNS inquiry coming from
outside for at least one reason: my firewall does not
allow it ;). My static IP is assigned to the firewall
itself, which in turn works as the traffic cop
managing a couple of private subnets, one for the
trusted private subnet (i.e. 192.168.1.0/24) and
another for the DMZ subnet. The machine on the DMZ
doed not use the local DNS server, but always resolve
through the ISP. So far this setup has worked as
Do you Yahoo!?
Yahoo! Mail - Find what you need with new enhanced search.
More information about the LUG