[prev in list] [next in list] [prev in thread] [next in thread]
List: ipcop-user
Subject: RE: [IPCop-user] Is this a valid DNS setup?
From: "Marco Teixeira" <marco () ccom ! uminho ! pt>
Date: 2004-08-31 13:29:34
Message-ID: 20040831133148.50414646FB () serv-g2 ! ccom ! uminho ! pt
[Download RAW message or body]
Another scenario (to avoid dns timeouts), is to put on your internal MS DNS
server your ipcop address as a forwarder. This will only work if your
internal DNS server is on GREEN (wich it seems to be).
PS: If your using win2000, you need to delete the "." zone for the
forwarders tab to appear...
Regards.
Marco Teixeira
-----Mensagem original-----
De: ipcop-user-admin@lists.sourceforge.net
[mailto:ipcop-user-admin@lists.sourceforge.net] Em nome de Allen, Christian
Enviada: segunda-feira, 30 de Agosto de 2004 13:00
Para: Brad Morgan; ipcop-user@lists.sourceforge.net
Assunto: RE: [IPCop-user] Is this a valid DNS setup?
>-----Original Message-----
>From: Brad Morgan [mailto:Brad.Morgan@horizonint.com]
>Sent: Friday, August 27, 2004 5:26 PM
>To: ipcop-user@lists.sourceforge.net
>Subject: [IPCop-user] Is this a valid DNS setup?
>
>
>Red Green
>ISP --- IPCop --- DNS / DHCP / Domain Controller
> |
> |-- Servers
> |
> |-- Desktops
>
>When I first installed IPCop, we had an NT4 domain with PDC, BDC, etc.
>without an internal DNS server. The previous firewall provided DNS
>services which I replaced with DNSMasq in IPCOP. IPCOP used the ISP
>DNS servers, everyone inside used IPCOP. No complaints.
>
>We upgraded to Active Directory and now I have internal DNS servers.
>All of the desktops use DHCP and dynamically update DNS. The internal
>DNS servers have the ISP DNS servers as forwarders.
<snip>
I had the same problem when I upgraded to AD. To bypass this problem I used
my DC as the primary DNS server and used IPCOP as my secondary and
everything works great. However I did not setup my internal DNS server with
my ISP's DNS servers, so it is truly an internal DNS server.
When a client requests a page it checks my internal DNS server first and if
it's a request for a remote address it will defer to ipcop.
HTH
Christian
-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise
J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click
_______________________________________________
IPCop-user mailing list
IPCop-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-user
-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click
_______________________________________________
IPCop-user mailing list
IPCop-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-user
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic