PAT --> DMZ --> Firewall --> LAN
- From: "Jason Rangle" <jrangle@xxxxxxxx>
- Date: Mon, 6 Mar 2006 10:32:57 -0600
We just got a firewall and want to add it to our network. We have PAT setup
on our Cisco router handling about 5 IP addresses. I am going to be putting
a couple of public boxes on the DMZ and would like to ask a few questions.
I am going to want to setup DNS on a box in the DMZ. But I don't know how
someone will be able to get to anything inside my firewall since the DMZ
will be an internal IP address scheme and same with the LAN. I could just
add some A records to resolve www, smtp, etc... to an external IP address,
but that doesn't make sense. When someone requests to see a website that is
inside my LAN I want to have a DNS box with an address of, say 65.66.250.1
that is translated by PAT to 10.10.1.1. That DNS box will then say that the
www server is inside my LAN which is 192.168.1.1. How will external hosts
reach this? How do I need to have my DNS in the LAN and the DNS in the DMZ
working together? Anyone have some tips? TIA.
Basically this is what I want:
Internet
|
Router (running PAT say I have two IP addresses 65.66.250.1
and .2. The internal is 10.10.1.0/24.)
|
DMZ (10.10.1.0/24 I need to have a DNS box here to forward
requests inside my firewall to the public services.)
|
Firewall (10.10.1.1external and 192.168.1.1internal)
|
LAN(192.168.1.0/24 here there will be a domain with a
Domain Controller, SMTP, POP, WWW among other things)
.
- Prev by Date: Re: Internet Control Noob question
- Next by Date: Re: 127.0.0.1 / IIS Issue
- Previous by thread: 127.0.0.1 / IIS Issue
- Next by thread: Odd issue with DHCP leases & RAS
- Index(es):
Relevant Pages
|
|
