Date: Mon, 19 Feb 96 15:56 MET From: me@tartufo.muc.ditec.de (Michael Elbel) To: hackers@freebsd.org Subject: Re: An ISP's Wishlist... Message-ID: <m0toX1L-000Pa6C@tartufo.muc.ditec.de> References: <199602141750.JAA16327@idiom.com> <199602150007.KAA18935@genesis.atrad.adelaide.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
In lists.freebsd.hackers you write: >David Muir Sharnoff stands accused of saying: >> >> It would be very nice to be able to have a separate configuration for >> each port that named might bind to. There are times when I want to >> serve different information to different nets. This is particularly >> handy when building firewalls. >That definitely falls into "you have the source" 8) I've done this, it wasn't too difficult. I'm now running three nameds on our firewall bastion, one to serve the inside network with everything on the outside hidden and a wildcard MX-record pointing to the mail relay machine, one to serve the outside with all internall stuff hidden and an MX-record also pointing to the mail relay and a third listening on 127.0.0.1 for the bastion itself that has info about both the in- and the outside. Works like a charm. If there's enough interest, I can make that available. Michael -- Michael Elbel, DITEC, Muenchen, Germany - me@muc.ditec.de Fermentation fault (coors dumped)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?m0toX1L-000Pa6C>