[clue-tech] Critical BIND issues behind firewall
Chris Schock
black at clapthreetimes.com
Mon Jan 17 12:39:35 MST 2005
> BTW, I think I have the issue figured out - the problem comes from using
> Split DNS. I had my first config using split dns, and during the AXFR
> zone transfers, all of them were getting transferred the local zone
> files... so even the external zone files were being filled with 10.0.0
> ip addresses... causing the problem. I'm not sure how to get around
> this... mainly because the reason I need split dns is because when
> you're behind a PIX, you can't address the remote IP address, only the
> internal one.
Views support this fine. I do this with my DNS server behind a firewall...
internal privately addressed hosts get the private address of the name
server, and the hosts resolving from the Internet get the public address.
view "internal" {
match-clients { 192.168.0.0/24; };
};
view "external" {
match-clients { any; };
};
More information about the clue-tech
mailing list