Re: Passing DNS Through DMZ
From: RQ (r.qian_at_inetmail.att.net)
Date: 07/23/04
- Next message: Mykhaylo Khodorev: "Re: Event ID 7063"
- Previous message: Phillip Windell: "Re: Change default DNS server on client with 2 nics"
- In reply to: Ace Fekay [MVP]: "Re: Passing DNS Through DMZ"
- Next in thread: Ace Fekay [MVP]: "Re: Passing DNS Through DMZ"
- Reply: Ace Fekay [MVP]: "Re: Passing DNS Through DMZ"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 23 Jul 2004 08:49:43 -0500
No, we're using AD DNS. Because the firewall is using NAT, so that users
inside cannot access web site www.company.com . I didn't create a www record
in DNS and use an alias command in firewall.
Roger
"Ace Fekay [MVP]"
<PleaseSubstituteMyActualFirstName&LastNameHere@hotmail.com> wrote in
message news:eDlvjRFcEHA.1248@TK2MSFTNGP11.phx.gbl...
> In news:uWggYS2bEHA.3144@TK2MSFTNGP09.phx.gbl,
> RQ <r.qian@inetmail.att.net> asked for help and I offered my suggestions
> below:
> > I'm using alias command in the firewall to let people access the web
> > sites instead of cteating a new zone in DC.
> >
> > Roger
>
> Sorry, I'm not following what you're implying. Do you mean to say that
your
> internal users are using your firewall as a DNS server?
>
> If that's the case, this is not the method to configure AD and AD clients,
> which of course we know that they must only use the internal DNS. As Jeff
> said, create the zones if not already created, and create a www record and
> give it the internal private IP address. This is of course based on the
fact
> that you are not hosting the zone and their public records and they are
> hosted elsewhere outside.
>
>
> --
> Regards,
> Ace
>
> Please direct all replies ONLY to the Microsoft public newsgroups
> so all can benefit.
>
> This posting is provided "AS-IS" with no warranties or guarantees
> and confers no rights.
>
> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
> Microsoft Windows MVP - Windows Server - Directory Services
>
> Security Is Like An Onion, It Has Layers
> HAM AND EGGS: A day's work for a chicken;
> A lifetime commitment for a pig.
> --
> =================================
>
>
- Next message: Mykhaylo Khodorev: "Re: Event ID 7063"
- Previous message: Phillip Windell: "Re: Change default DNS server on client with 2 nics"
- In reply to: Ace Fekay [MVP]: "Re: Passing DNS Through DMZ"
- Next in thread: Ace Fekay [MVP]: "Re: Passing DNS Through DMZ"
- Reply: Ace Fekay [MVP]: "Re: Passing DNS Through DMZ"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
