'RE: [IPCop-user] Is this a valid DNS setup?'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipcop-user
Subject:    RE: [IPCop-user] Is this a valid DNS setup?
From:       "Marco Teixeira" <marco () ccom ! uminho ! pt>
Date:       2004-08-31 13:29:34
Message-ID: 20040831133148.50414646FB () serv-g2 ! ccom ! uminho ! pt
[Download RAW message or body]

Another scenario (to avoid dns timeouts), is  to put on your internal MS DNS
server your ipcop address as a forwarder. This will only work if your
internal DNS server is on GREEN (wich it seems to be).

PS: If your using win2000, you need to delete the "." zone for the
forwarders tab to appear...

Regards.

Marco Teixeira

-----Mensagem original-----
De: ipcop-user-admin@lists.sourceforge.net
[mailto:ipcop-user-admin@lists.sourceforge.net] Em nome de Allen, Christian
Enviada: segunda-feira, 30 de Agosto de 2004 13:00
Para: Brad Morgan; ipcop-user@lists.sourceforge.net
Assunto: RE: [IPCop-user] Is this a valid DNS setup?


>-----Original Message-----
>From: Brad Morgan [mailto:Brad.Morgan@horizonint.com]
>Sent: Friday, August 27, 2004 5:26 PM
>To: ipcop-user@lists.sourceforge.net
>Subject: [IPCop-user] Is this a valid DNS setup?
>
>
>Red               Green
>ISP --- IPCop --- DNS / DHCP / Domain Controller
>              |
>              |-- Servers
>              |
>              |-- Desktops
>
>When I first installed IPCop, we had an NT4 domain with PDC, BDC, etc. 
>without an internal DNS server.  The previous firewall provided DNS 
>services which I replaced with DNSMasq in IPCOP.  IPCOP used the ISP 
>DNS servers, everyone inside used IPCOP.  No complaints.
>
>We upgraded to Active Directory and now I have internal DNS servers.  
>All of the desktops use DHCP and dynamically update DNS.  The internal 
>DNS servers have the ISP DNS servers as forwarders.

<snip>

I had the same problem when I upgraded to AD.  To bypass this problem I used
my DC as the primary DNS server and used IPCOP as my secondary and
everything works great.  However I did not setup my internal DNS server with
my ISP's DNS servers, so it is truly an internal DNS server.

When a client requests a page it checks my internal DNS server first and if
it's a request for a remote address it will defer to ipcop.

HTH
Christian



-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise
J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click
_______________________________________________
IPCop-user mailing list
IPCop-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-user



-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click
_______________________________________________
IPCop-user mailing list
IPCop-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-user
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic