Here is how I got mine to work. ip nat inside source static tcp 192.168.11.20 53 216.254.25.74 53 extendable ip nat inside source static udp 192.168.11.20 53 216.254.25.74 53 extendable
The first line is if someone else is a secondary dns server for you and you do zone transfers that's why tcp. The second line is for actual dns queries it uses udp and I have no problems at all with quesries been hosting my own dns and mail server for over 3 years on my own dsl circuit and a buddy of mine is the secondary dns and secondary mx record. I am doing this on a 1605. Hope this helps. Waiting for my pix to arrive so I can get some experience with it and replace the 1605 with the pix. Which I will probably looking to you guys for help :). -----Original Message----- From: Johan Hjalmarsson [mailto:[EMAIL PROTECTED]] Sent: Friday, July 26, 2002 4:30 AM To: [EMAIL PROTECTED] Subject: DNS through PAT? [7:49754] I'd like to install my own DNS server on my home network, but it seems like I've run into some problems :-( Since I only got one public IP address from my provider I'm running Port Address Translation to be able to gain Internet access from the PC's on my LAN. I also use static NAT to let Internet users access my Web & FTP site on one of my inside PC's. So far so good. No for the problem: I tried to create the same static NAT rule for DNS, but when I debug the NAT translation it claims that it can't translate the DNS A-record. Here's some examples of the NAT statements I'm using: LAN access to the Internet: ip nat inside source list acl-nat interface Ethernet1 overload Access to my web server from the Internet: ip nat inside source static tcp 192.168.10.5 80 217.5.2.11 80 extendable The DNS entry I used: ip nat inside source static udp 192.168.10.5 53 217.5.2.11 53 extendable Any idear what I'm doing wrong? Is it at all possible to make this work with just one public address? Thanks Johan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=49756&t=49754 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
