hvteh wrote:
> 1) How to setup a dns behind a firewall? I have read the DNS-how to and
> DNS and bind by O'relly and it does not mention a lot. We have a
> firewall (non-linux-commercial firewall- SecureZone) and we are using
> linux as a mail server (with pop) and dns server. On the firewall I
> enable the DNS query and zones transfer and open up port 53( and enable
> ip rewrite to the DNS server). Our internal net is using 10.xx.xx.xx. So
> for the dns that is place in the internal net, i should set the domain
> and the A record for ip to internal ip or internet ip?
There is no point sending DNS replies which reference internal
(10.x.x.x) IP addresses to Internet clients.
If your servers are all behind the firewall, you will need to
configure the firewall to forward traffic to them. In this case, the
DNS server should return the IP address of the firewall.
If you also wish to access these servers internally, using their
internal IP addresses, you will need to set up a second DNS server
which provides the internal IP addresses, for use by the internal
clients.
> 2) I intend to learn to setup a firewall with dns on linux machine. So,
> on a 2 interface card(firewall), how do i setup the dns(named.hosts)? Do
> i need to run 2 copies of DNS configuration- one internal and one
> outside? Any sample on the configuration will help alot.
You would need to run two distinct named processes, each bound to a
separate interface, and each using different zone files.
> 3) How mail and DNS work? For example, when i send mail to [EMAIL PROTECTED]
> , how the mail reach the user in abc.com if the DNS is behind the
> firewall?
In order to send mail to [EMAIL PROTECTED], the DNS server for abc.com has
to be reachable from the Internet, as does at least one of the mail
servers listed in the domain's MX records.
--
Glynn Clements <[EMAIL PROTECTED]>
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
