On Thu, 15 Nov 2007, Daniel Melameth wrote: > On 11/15/07, Jonathan Thornburg <[EMAIL PROTECTED]> wrote: > > (a) When the firewall boots, after the outside network is configured > > (via /etc/rc running dhclient) a shell/grep/perl script on the > > firewall copies the DNS server addresses from /etc/resolv.conf > > into /etc/dhcpd.conf, and only then does the firewall start its > > dhcpd on the inside interface. dhcpd will then hand out the > > (ISP-provided) DNS server addresses to clients at the same time > > it gives them their local addresses, causing the clients to > > directly query my ISP's DNS servers.
It's generally a bad thing to use public addresses for Windoze machines (expecially of the Windoze variety), .. so it would be much better to use offnet addersses internally. Should not be a problem using the ISPs DNS servers, however, .. they won't change. Lee ================================================ Leland V. Lammert [EMAIL PROTECTED] Chief Scientist Omnitec Corporation Network/Internet Consultants www.omnitec.net ================================================