Date: Wed, 5 Jan 2000 09:37:47 +1000 (EST) From: Colin Campbell <sgcccdc@citec.qld.gov.au> To: Dan Langille <dan@freebsddiary.org> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: two copies of bind or two name servers? Message-ID: <Pine.LNX.4.10.10001050929480.2370-100000@guru.citec.qld.gov.au> In-Reply-To: <200001041035.XAA56537@ducky.nz.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, Here's one way to do it on the "bastion" host. internal dns - bind to 127.0.0.1 and internal interface - forward to external interface external dns - binds to external interface - forward to isp resolver - point to 127.0.0.1 or internal interface Internal hosts point their resolver at the internal interface of the bastion. What happens? From outside, the world can only see your external DNS. Inside hosts can resolve off the internal DNS. Systems on the bastion can see both internal and external (via forwarding) dns. Colin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.10.10001050929480.2370-100000>