Re: [Cooker-firewall] DNS Server Behind SNF
Florin wrote: Joseph Watson [EMAIL PROTECTED] writes: Hello Hello there, I recently tried to move a Server that is running MDK 7.0, Apache, Bind, WuFTP, and Sendmail, behind a SNF. I set up port forwarding for each of the services, but ran into a problem. It seems to be a problem with the DNS. is this a public server or just a intrenal server protected from your internal network. This is a public server that is connected to the internet. ... snip ... 2) In the event that a http server should work properly behind my SNF, how are request from my private network to the external IP address of my SNF on port 80 going to be handled. Will it handle a internal client browsing my webserver when the DNS will resolve to the external address. It seems the traffic will go out and be send back in, but will it be masqurated or just redirected, or will it not work at all?? that depends on your dns configuration. If an external IP address will correspond to your web server address then it will go out and then come back in ... you should put a internal IP address in the dns. So I will have to set up two DNS servers?? One for my internat network, and one to resolve my domains for the interent?? Any comments, help, links would be wonderfull. Thanks for the wonderfull product SNF, I like it much, and if I can figure this problem out, it will be that much more great. cheers, Thanks Much!!
Re: [Cooker-firewall] DNS Server Behind SNF
On Wednesday 21 November 2001 01:32 pm, Joseph Watson wrote: If its a host DNS I don't think you want to do that. I'm not sure what's the best way but I put hosted hosts/domains in hosts (hosts.conf = order hosts,bind) with their local IP#s. Apache virtual hosts also use local IP#s when inside, serving the outside is masqueraded. OK, That works for my linux boxes, but what about a Windows box on the internal network?? Maybe I mist something? Just copy hosts to C:\Windows\hosts Something else I've heard of is 2 instances of bind with one listening on the internal interface, resolving to local IP#s, and the other only listening on the external and lo interfaces.
[Cooker-firewall] DNS Server Behind SNF
Hello I recently tried to move a Server that is running MDK 7.0, Apache, Bind, WuFTP, and Sendmail, behind a SNF. I set up port forwarding for each of the services, but ran into a problem. It seems to be a problem with the DNS. From console of the server behind the firewall, the only addresses it would resolve are addresses that it is responsable for, and as soon as it was required to request info from a forwarder, it would not resolve. If I added a external DNS Server IP to my resolv.conf file, external address would resolve properly. So DNS request are flowing though the firewall, but for some reason my internal DNS Server will not forward request successfully. Also, I tried to FTP to the SNF, and the requests are forwarded through to the internal server, but before a login request is received, there is a several minute delay, which I think is a DNS query that is timing out?? Now my questions: 1) Should I be able to put a DNS server behind a SNF? If it should work, does anyone have any Ideas what I might be doing wrong?? 2) In the event that a http server should work properly behind my SNF, how are request from my private network to the external IP address of my SNF on port 80 going to be handled. Will it handle a internal client browsing my webserver when the DNS will resolve to the external address. It seems the traffic will go out and be send back in, but will it be masqurated or just redirected, or will it not work at all?? Any comments, help, links would be wonderfull. Thanks for the wonderfull product SNF, I like it much, and if I can figure this problem out, it will be that much more great. Thanks Joseph