From owner-freebsd-questions Thu Nov 9 9:56:20 2000 Delivered-To: freebsd-questions@freebsd.org Received: from dt051n37.san.rr.com (dt051n37.san.rr.com [204.210.32.55]) by hub.freebsd.org (Postfix) with ESMTP id 36A0837B479 for ; Thu, 9 Nov 2000 09:56:17 -0800 (PST) Received: from FreeBSD.org (Studded@master [10.0.0.2]) by dt051n37.san.rr.com (8.9.3/8.9.3) with ESMTP id JAA78721; Thu, 9 Nov 2000 09:56:14 -0800 (PST) (envelope-from DougB@FreeBSD.org) Message-ID: <3A0AE53E.223BEF76@FreeBSD.org> Date: Thu, 09 Nov 2000 09:56:14 -0800 From: Doug Barton Organization: Triborough Bridge & Tunnel Authority X-Mailer: Mozilla 4.76 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Jeremy Vandenhouten Cc: questions@FreeBSD.org Subject: Re: DNS Setup References: <4885c848ca8c.48ca8c4885c8@marquette.edu> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This goes WAY beyond basic freebsd questions, and is really quite a bit more complicated than you are even describing here. You need to get and read "DNS and BIND, Third Edition" from O'Reilly. It will describe in detail what you need to do to make something like this work. Good luck, Doug Jeremy Vandenhouten wrote: > > In setting up 1 of the 2 dns servers required for taking control of a > domain. Is setting up one behind a firewall constitute a valid option? > More info to follow: > > Lucent Router ------ FreeBSD NAT firewall --------- DNS Server > > I know I need to tell the firewall to redirect port 53 both forwards > and backwards for the DNS server. > > A case in point, assuming I was on the outside of the Lucent Router and > wanted to use the internal DNS server (192.168.x.x) from another > FreeBSD box, where would I point it at because obviously the DNS server > doesn't have a legitimate external "Internet IP." > > The question is easy if I'm internal behind the firewall, I could just > point directly at the 192.168.x.x address, but that's not the situation > I'm looking at. Or, alternatively, is there a better way of setting > this up without putting the DNS server on the firewall machine. > > Thanks for any input... > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- Life is an essay test. Long form. Spelling counts. Do YOU Yahoo!? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message