rfc1918 ns records coming from internet are queried?
David Sparks
dave at ca.sophos.com
Wed Nov 26 19:44:26 UTC 2008
sthaug at nethelp.no wrote:
>> A good border router will do a few things for network hygiene. It will filter
>> incoming packets that have a source address from the internal network, and it
>> will filter outgoing packets that don't have a source IP in the internal network.
>>
>> A DNS server should do a similar thing: it will not send rfc1918 queries to
>> the internet, and it will discard rfc1918 responses from the internet.
>
> A border router knows what is "inside" and "outside" your network, while
> a DNS server does not. Important difference.
You're missing the point. This is not about inside and outside networks, it
is about rfc1918 responses from internet queries.
ds
More information about the bind-users
mailing list