(no subject)

Super News User news at lust.goodnet.com
Fri Dec 3 01:45:03 UTC 1999 

From: omegauturn at hotmail.com
Newsgroups: comp.protocols.dns.bind
Subject: DNS SETUP HELP
Message-ID: <3847209e.3126071 at news.goodnet.com>
X-Newsreader: Forte Free Agent 1.11/32.235
Lines: 51
Date: Fri, 03 Dec 1999 01:45:03 GMT
NNTP-Posting-Host: 209.141.106.6
X-Complaints-To: abuse at winstar.net
X-Trace: news.goodnet.com 944185503 209.141.106.6 (Thu, 02 Dec 1999 18:45:03 MST)
NNTP-Posting-Date: Thu, 02 Dec 1999 18:45:03 MST
Organization: WinStar GoodNet, Inc.

Hi,

I have multiple questions and I hope there's someone out there that
can help....

1.  We have a SCO UNIX box running DNS with a network Card pointing to
our internal network and another card pointing directly to the
internet and this card is not going through the firewall...
2..   We have a CISCO PIX firewall
3.  Website is on a server in the  DMZ .

1st Q:
The company that setup this for us claims that the SCO box must run
(and it's running now)  two DNS services; one for intranet and another
for the internet. The outside(internet)  DNS will allow requests for
our website to point to the PIX firewall which in turn points to the
webserver in the DMZ (they said that's how it should be!).   I'm not
sure if we need two?.    how can I find if there's two DNS services
running on a SCO unix?.     I checked out the UNIX box myself and I
don't think it's running two seperate DNS services.  


2nd Q:

Can we setup just one DNS server that will do the JOB....   Again I
talked to them about setting an NT box to run DNS and they said it can
be done but we need one for the intranet and another NT box for the
internet wich we can set it in the DMZ .  One NT box won't do it
because NT doesn't allow u to run two DNS services on the same server.
If we have to setup the NT box in the DMZ anyway why not use the PIX
firewall to forward internet requests for us... and that brings me to
my third question


3rd Q:
Can the PIX be setup to forward all requests for our web site to the
webserver on the DMZ and do we need a DNS dor that purpose?...

4th Q:
If we need only one DNS server, where do u think this server should be
setup(on the intranet or DMZ or outside the PIX)... I'm a novice to
this and would like some insights?....

I know it's confusing for me and if u need more details please let me
know ... I need all the help and I do appreciate all of you in advance

Thanks and hope u have a good day!
Tony 
omegauturn at hotmail.com

More information about the bind-users mailing list