Search Again: Re: DNS behind a firewall From: David Rice Date: Monday, February 14, 2000 Time: 1:38:00 pm Hi Chris: Men & Mice Support wrote: > > > Here's your DNS file: > auto-logic.net. SOA ns1.auto-logic.net. > doc.autosense.ca. > 2000021102 ; serial > 28800 ; refresh (8 hours) > 7200 ; retry (2 hours) > 604800 ; expire (7 days) > 86400 ; minimum (1 day) > auto-logic.net. NS ns1.auto-logic.net. > auto-logic.net. NS ns.uunet.ca. > auto-logic.net. CNAME 100.0.0.90.auto-logic.net. > auto-logic.net. MX 10 mail.auto-logic.net. > mail.auto-logic.net. A 100.0.0.90 > ns1.auto-logic.net. A 100.0.0.90 > www.auto-logic.net. A 100.0.0.90 > www.auto-logic.net. HINFO Macintosh Mac OS > > Here are the problems: > > o You've used your private address in the file, which means that, > from the outside, nobody will be able to find the right addresses. > You need to change your DNS to point to your public address. So do I enter the address of the router here? 216.95.190.1 > > o Your private addresses aren't really private. Right now, class A > subnet 100 is unused, according to the root servers, but that doesn't > mean it will never be used. (Someone will correct me if I'm wrong, > I'm sure, but I don't know of any reason why 100.0.0.0/8 has been set > aside.) You should be using one of the address blocks set aside for > private networks, such as 10.0.0.0/8 or 192.168.0.0/24. Thanks, I will change them to 10.0.0.0 etc. > > o The CNAME record is illegal (against the rules of DNS) for several > reasons, and should be removed. What is its intended purpose? Removed! I have no idea why I put it there. > > o ns.uunet.ca isn't configured for your domain. This will need to be > addressed at some point. ns.uunet.ca will be set up soon. > > >I have several things that I do not understand: > > > >Is it possible for this DNS server to be seen by the outside world? And > >if so what do I have to do to make that happen? I have set the router to > >pass DNS information to the internal address of the server on port 53. > >Is this correct? > > Yes, your DNS server is visible to the outside world. Your inbound > mapping appears to be correct. Did you map both TCP and UDP ports to > the DNS server? > I do not know the port number for UDP and dont even know what it is for. Should I map it to the same server? By the way, is there a place where these port numbers can be found? Thanks, David

Messages In This Thread: DNS behind a firewall by David Rice on Feb 11, 2000 at 5:23:00 pm Re: DNS behind a firewall by Men & Mice Support on Feb 11, 2000 at 7:49:00 pm Re: DNS behind a firewall by David Rice on Feb 14, 2000 at 1:38:00 pm Re: DNS behind a firewall by Men & Mice Support on Feb 14, 2000 at 6:57:00 pm