Firewalls: Re: DNS on firewall??

Firewalls
(March 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: DNS on firewall??
From:	"J. T. Judge" <sy71703 @ public . fmr . com>
Date:	Mon, 27 Feb 1995 16:25:04 -0500
To:	firewalls @ greatcircle . com



	For those of you with split DNS
	( small external DNS primary for XXX.com, resolv.conf points to
	internal DNS servers who are primary for XXX.com and have 
	forwarders to the gateway to resolve external names)

	Is your firewall a network level firewall ? 
		So, joe_user @
 yy .
 XXX .
 com can 'ftp foo.com' and it 
		connects ?

	or is your firewall an application level firewall ?
		So, joe_user @
 yy .
 XXX .
 com can NOT 'ftp foo.com', they
		have to 'ftp gateway.XXX.com' (TIS) or SOCKS their
		way out ?


	If you are application level, how do you deal with the 
	problem that internal mailers, network client programs, etc
	can resolve A and MX records for "out there" -- but these
	same client programs can NOT connect to those addresses ?


	advTHANKSance
			- joe

Follow-Ups:

Re: DNS on firewall??
From: "Simon J. Gerraty" <sjg @ zen . void . oz . au>

Indexed By Date	Previous:	Re: satan From: sedayao @ argus . intel . com (Jeffrey C. Sedayao)
Indexed By Date	Next:	Multiple Posts From: <kpresser @ infi . net>
Indexed By Thread	Previous:	Satan From: NEWTON Cesar <NCESAR @ prolan . com . br>
Indexed By Thread	Next:	Re: DNS on firewall?? From: "Simon J. Gerraty" <sjg @ zen . void . oz . au>