Moving DNS behind NAT
tsar.peter at gmail.com
tsar.peter at gmail.com
Mon May 15 14:38:20 UTC 2006
Depends on who is asking your nameservers
If the clients are withing 1918 address space you should change
A records to the real 1918-adresses.
If the clients are on Internet and accessing Internet stuff you should
use the real addresses.
If the clients are on Internet and accesses resources behind your NAT (
1918 adresses) you should use the Internet-visible address.
If you combine these you should need to implement views.
Also there is a number of issues where NAT is problematic for
DNS-traffic, the best location for bind is probably on your NAT-box.
More information about the bind-users
mailing list