|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] home dns notes
|
On Sun, Aug 05, 2001 at 05:31:48PM -0400, Jeff Abrahamson wrote:
: The problem is that if I claim authority over purple.com, I can't see
: the outside purple things (www, list). If I claim authority over a
: subdomain, I don't get there, since the lookups are com -->
: purple.com, which doesn't know about home.purple.com subdomain.
Why not just do a split dns config? You setup an internal DNS that claims
authority for purple.com, with zone files that contain info on your internal
and external resources. In addition, you setup an external DNS which also
claims authority for purple.com, with zone files that contain info ONLY on
your external resources.
Set your internal DNS to forward to the external DNS. For internal machines,
you'll query your internal DNS, which claims authority for purple.com, and
gets all other info from the external server. Your external DNS will NEVER
query the internal DNS. Make certain of this.
Yes, you've got 2 zone files to maintain, but it's a minimal amount of
work, considering the security benefits. Beats monkeying around with
hosts files, doesn't it? Works perfectly in my network..
--
Jason Costomiris <>< | Technologist, geek, human.
jcostom {at} jasons {dot} org | http://www.jasons.org/
Quidquid latine dictum sit, altum viditur.
My account, My opinions.
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|