Firewalls: Re: Usefulness of Split DNS?

Firewalls
(September 1994)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Usefulness of Split DNS?
From:	ericw @ fx . com (Eric Wedaa)
Date:	Thu, 1 Sep 94 13:23:16 PDT
To:	firewalls @ GreatCircle . COM, rali @ mailgate . hri . com

 > 
> What is, indeed, the usefulness of hiding "inside" names via a split
> DNS?
> 
> I can see that it might hinder a "bad guy" if there was *no* way to
> determine the inside net ID, but in a majority of cases the inside net is
> known ...
 
Says who?  My inside networks are not known outside the company.  In fact, my
inside networks aren't even registered.  Hiding them means that we can
create/destroy random class C networks at will.  Our firewall and router
don't advertise those routes, so no other site is going to get burnt by 
our random Class C networks.  And as long as we don't have to connect to 
any of the sites that have those addresses, we're ok.  (So far, so good.)




>>>>>Ericw

Follow-Ups:

Re: Usefulness of Split DNS?
From: murkland @ pwfl . com (Richard Murkland 407-796-5249)

Indexed By Date	Previous:	Re: Usefulness of Split DNS? From: Brent Chapman <brent @ mycroft . GreatCircle . COM>
Indexed By Date	Next:	And the Funky Hostname Award for this week goes to: From: Brent Chapman <brent @ mycroft . GreatCircle . COM>
Indexed By Thread	Previous:	Re: Usefulness of Split DNS? From: Brent Chapman <brent @ mycroft . GreatCircle . COM>
Indexed By Thread	Next:	Re: Usefulness of Split DNS? From: murkland @ pwfl . com (Richard Murkland 407-796-5249)