Mailinglist Archive: opensuse-security (195 mails)

< Previous Next >
Re: [suse-security] Re: DNS Concept for DMZ
  • From: Gerhard Sittig <Gerhard.Sittig@xxxxxxx>
  • Date: Fri, 24 Mar 2000 16:32:31 +0100
  • Message-id: <20000324163231.U24822@xxxxxxxxxxxxx>
On Fri, Mar 24, 2000 at 14:31 +0100, Michael Hamm wrote:
>
> But how did the gateway know, that for example MY-PC-NAME is an
> internal Name, and it has to be resolved by the internal
> DNS-Server.

This is one of the basic things in configuring DNS: A client
does ask your local server (i.e. _any_ server) and gets an answer
without caring at all if this one was derived locally (being
authoritative or cached) or fetched remotely (by forwarding the
request to your uplink's server) -- it's the server's job to
produce the answer. Maybe the DNS HowTo is what you want to have
a glimpse at.

And you might want to visit a local FreeBSD mirror
(www.{lu,de}.freebsd.org?) and have a look at the
freebsd-security ML archive. There was a thread called
"Continual DNS requests from mysterious IP" late in January
containing some instruction or methods for securing your
configuration.


virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76
Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@xxxxxxx
--
If you don't understand or are scared by any of the above
ask your parents or an adult to help you.

< Previous Next >
References