internal DNS, public IP : what would you do ?
Barry Margolin
barmar at alum.mit.edu
Sat May 21 05:57:28 UTC 2005
In article <d6kikm$12k0$1 at sf1.isc.org>, jacoute at free.fr wrote:
> Hi,
>
> I have a small question about setting up an internal DNS server.
> I own a domain name (let's say domain.com) which is administered by my ISP.
> I have a firewall box between Internet, DMS and LAN. For internal DNS queries
> towards DMZ (www.domain.com), should I:
> - set up a domain.com zone with internal IP of my web server
> - or set up port redirection on the public IP of my firewall
>
> Basically, if I make a queries to my internal DNS server for www.domain.com,
> should it give me the public IP (using my ISP DNS servers as forwarders, and
> redirecting the www traffic on the correct computer on the DMS) or the
> non-routable private IP of the www server on the DMZ ?
>
> What is the recommended way ?
> Thanks in advance for any hints.
I'd recommend having it give the internal IP, so that internal users can
go directly to the server without having to bounce off your firewall.
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
More information about the bind-users
mailing list