28 Mar
2001
28 Mar
'01
12:54
What is the reason for installing pri dns server in a self owned DMZ and sec dns server at the isp? Convenience - you can manipulate the zones easier. If the firewall ist not stateful this enables inet users to do dns probes on tcp 53 and other worse things. why? you can block tcp port 53 for everyone except the ip of the secondary NS.
bye Markus -- _____________________________ /"\ Markus Gaugusch ICQ 11374583 \ / ASCII Ribbon Campaign markus@gaugusch.dhs.org X Against HTML Mail / \