|
Subject: |
RE:DNS forwarders / slaves |
|
From: |
Henning .
Tranberg @
ti-oslo .
televerket .
tele .
no |
|
Date: |
Fri, 4 Mar 1994 12:30:16 +0100 |
|
To: |
firewalls @
greatcircle .
com |
|
X400-content-type: |
P2-1984 (2) |
|
X400-mts-identifier: |
[/PRMD=tele/ADMD=TELEMAX/C=NO/;2159 94/03/04 12:30] |
|
X400-originator: |
Henning .
Tranberg @
ti-oslo .
televerket .
tele .
no |
|
X400-received: |
by mta gw.telepost.no in /PRMD=internet/ADMD=telemax/C=no/; Relayed; Fri, 4 Mar 1994 13:04:43 +0100 |
|
X400-received: |
by /PRMD=tcpip/ADMD=telemax/C=no/; Relayed; Fri, 4 Mar 1994 12:45:43 +0100 |
|
X400-received: |
by /ADMD=TELEMAX/C=NO/; Relayed; Fri, 4 Mar 1994 12:46:28 +0100 |
|
X400-received: |
by /PRMD=tele/ADMD=TELEMAX/C=NO/; Relayed; Fri, 4 Mar 1994 12:31:12 +0100 |
|
X400-received: |
by /PRMD=tele/ADMD=TELEMAX/C=NO/; Relayed; Fri, 4 Mar 1994 12:30:16 +0100 |
|
X400-recipients: |
firewalls @
greatcircle .
com |
------------------------------ Start of forwarded message 1
Delivery-Date: Tue, 1 Jan 1985 00:00:00 +0100
X400-Content-Type: P2-1984 (2)
X400-Originator: Unknown @
gw .
telepost .
no
Original-Encoded-Information-Types:
X400-Recipients: Henning .
Tranberg @
ti-oslo .
televerket .
tele .
no
Converted-Encoded-Information-Types:
Date: Thu, 3 Mar 1994 10:50:23 +0100
From: Henning .
Tranberg @
ti-oslo .
televerket .
tele .
no
Message-ID: <"2134 94/03/03 10:50*/G=Henning/S=Tranberg/OU=ti-oslo/O=televerket/PRMD=tele/ADMD=TELEMAX/C=NO/"@MHS>
To: Firewalls-Owner @
GreatCircle .
COM
In-Reply-To: <85940224192558/0003424373ND2EM @
mcimail .
com>
Subject: DNS forwarders / slaves
>We are setting up our internal dns servers as slaves,
>"forwarding" external requests to a firewall for resolution from
>the outside. These internal servers however, cease recognizing
>the various NS entries for other internal subdomains.
>We have tried changing them to not be slaves, only forwarding. No
>luck. We have also tried adding their own addresses to the
>forwarding list, to see if they would then ask themselves. No
>luck.
>Any ideas would be greatly appreciated.
Maybe SOCKS can help you out, depending on which services you need
resolution of external names for.
I am currently running SOCKS 4.1, which comes with several clients
configurable for doing their name resolution on the firewall host.
These clients will not in your (and my) case be able to do internal
name resolution as well, but if you install then as rfinger, rwhois
and so on, you will al least be able to use the original routines
(i.e finger, whois,...) for internal hosts.
If you need external resolution for other services than the ones
included with the SOCKS distribution, I guess you will be able
to use bits and pieces from the source...
I anyone has any better ideas on how to solve the problems related
to making a firewall with external DNS capability work with internal
DNS servers, I would be a happier man.
Henning Tranberg
Norwegian Telecom
Hening .
Tranberg @
ti-oslo .
televerket .
tele .
no
------------------------------ End of forwarded message 1
|
|
