Search Again: Re: DNS behind NAT From: Matthias Gruber Date: Thursday, April 4, 2002 Time: 9:47:37 pm Hello, we are running all of our nameservers behind (cisco) NAT. the most missing feature (mac os 9) is the use of two network interfaces with two ip adresses (one outside, one inside NAT. i know this works with macos x;-). another important thing is to avoid zone transfers through your NAT router. i do not know of any router capable to translate the payload of a zone transfer. that means you cannot use external secondary servers (e.g. at your isp's site). translateted dns requests get a ttl=0 from ciscos NAT which causes problems to some firewalls. > If you're planning to use QuickDNS to replace MacDNS, then you'll > probably want to use it as your master server for at least your > internal zones. Which means that all your internal machines should > use it as their DNS server (in their TCP/IP settings). > > If you want the public to be able to see the DNS records on your > QuickDNS server, you'll need to open port 53 (both UDP and TCP) on > your base station and forward it to your QuickDNS server. However, it > looks like you currently have someone else handling the public > version of your DNS records, so if you want to keep it like that, you > don't need to configure the base station at all. > ____________________________________________________________________ > Chris Buxton Men & Mice > support@menandmice.com Making DNS Easy > > At 8:02 AM +0000 3/13/02, Dave Hage wrote: >> Dear All, >> >> I am the IT guy (got the shortest straw) for a small music preparation >> service. We have a Mac network on a static IP behind a NAT router (Airport >> Base Station actually). >> We run a Appleshare IP server and our web site (www.dakotamusic) forwards >> our email to mail.dakotamusic.com which is behind the NAT router. >> At the moment I use Mac DNS mainly so that the email server knows who it is >> supposed to be. I would like to move to QuickDNS for more stability, but I >> have a few question as I am very new to this so here goes. >> Should I run QuickDNS purely as a secondary server, and if so will I need to >> forward any particular ports. >> Any help greatly appreciated. >> >> >> -- >> Dave Hage >> Dakota Music Service Ltd >> >> BTW I know I only have 1 MX record, very bad I know - should be fixed soon! >> >> Thanks again > > > bye, Matthias Gruber ----------------------------------------------------- (Networking, Technical Support) WOLNET Internet Service Provider Autorisierter Apple Haendler Hinterstrasse 21 Tel. 0271 2361830 D-57072 Siegen Fax. 0271 3331184 mailto: matthias.gruber@wolnet.de internet: http://www.wolnet.de/

Messages In This Thread: DNS behind NAT by Dave Hage on Mar 13, 2002 at 12:04:41 am Re: DNS behind NAT by Men & Mice Support on Mar 13, 2002 at 2:01:46 am Re: DNS behind NAT by Dave Hage on Mar 13, 2002 at 2:14:17 am Re: DNS behind NAT by Men & Mice Support on Mar 13, 2002 at 2:22:11 am Re: DNS behind NAT by Matthias Gruber on Apr 4, 2002 at 9:47:37 pm Re: DNS behind NAT by Len Conrad on Apr 5, 2002 at 1:40:28 am Re: DNS behind NAT by Men & Mice Support on Apr 5, 2002 at 4:15:51 pm