From owner-freebsd-net  Tue Mar 27  0: 5: 0 2001
Delivered-To: freebsd-net@freebsd.org
Received: from resnet.uoregon.edu (resnet.uoregon.edu [128.223.122.47])
	by hub.freebsd.org (Postfix) with ESMTP
	id A756237B71A; Tue, 27 Mar 2001 00:04:56 -0800 (PST)
	(envelope-from dwhite@resnet.uoregon.edu)
Received: from localhost (dwhite@localhost)
	by resnet.uoregon.edu (8.10.1/8.10.1) with ESMTP id f2R84pB09195;
	Tue, 27 Mar 2001 00:04:51 -0800 (PST)
Date: Tue, 27 Mar 2001 00:04:51 -0800 (PST)
From: Doug White <dwhite@resnet.uoregon.edu>
To: Murray Taylor <mtaylor@bytecraft.com.au>
Cc: "'freebsd-net@freebsd.org'" <freebsd-net@FreeBSD.ORG>,
	"'freebsd-hackers@freebsd.org'" <freebsd-hackers@FreeBSD.ORG>
Subject: Re: DNS rules etc
In-Reply-To: <710709BB8B02D311942E0060674418105442A8@MELEXC01>
Message-ID: <Pine.BSF.4.33.0103270003360.7246-100000@resnet.uoregon.edu>
X-All-Your-Base: are belong to us
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Tue, 27 Mar 2001, Murray Taylor wrote:

> I've got the frame relay working, and am waiting now for
> some network delegation stuff external to me to complete.
> However I need to know if it is possible to use DNS
> as detailed below to allow the host spyder be visible to the
> Internet and our intranet, without polluting the nameservers.

The standard way to do this is to have two separate nameserver instances.
The world points at one and all the internal hosts point at the other.
This is generally called 'split DNS.'

Also, having services running on the firewall is a bit tenuous at best.
You generally want to use a separate host for mail, etc. and just
NAT it through.

Doug White                    |  FreeBSD: The Power to Serve
dwhite@resnet.uoregon.edu     |  www.FreeBSD.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message