How should I configure internal and external DNS servers
Marco
mm at dorfdsl.de
Sat Nov 4 06:00:02 UTC 2023
Am 04.11.2023 15:03 schrieb Nick Tait via bind-users:
> I only included this because the idea had been put forward already.
> But even if the logistics of assigning public IPv6 addresses to your
> internal hosts was palatable to you, you'd also want to think about
> whether you are comfortable making that information (i.e. the IPv6
> addresses used for internal servers) publicly available? I think most
> organisations wouldn't want to do that?
Firewalls exist to block incoming traffic.
It is also possible to create a internal.example.org domain and only
allow queries from your own network, if you really want to hide DNS.
Security by obscurity isn't a good security concept.
More information about the bind-users
mailing list