[svlug] Bind Vulnerabilities

Marc MERLIN marc_news at valinux.com
Sun Mar 25 22:40:02 PST 2001

Previous message: [svlug] Bind Vulnerabilities
Next message: [svlug] Bind Vulnerabilities
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Mar 25, 2001 at 10:35:06AM +0000, Drew wrote:
> Seems like this is just the thing for my firewall/router/dns/webserver
> box.  I only have one static IP, so my internal network is all
> 192.168.x.y and I don't want my DNS server broadcasting what my
> internal stuff.  I guess from the outside, I'll offer a view of all
> public domain info, while from the inside, there'll be a view of both
> public and my private domains.  Cool.  All from one DNS box.

This has been available since the first release of bind 8 as it lets you
bind to a specific IP.
Typically in a  split DNS setup, you  not only don't want  outside people to
query  your resource  records for  your intranet,  but you'll  often give  a
different IP for the same host:
www.company.tld would resolve to a different  IP whether you query that name
from the  inside our the  outside, as mandated  by firewalls or  other rules
that requires a setup like this.

Marc
-- 
Microsoft is to operating systems & security ....
                                      .... what McDonalds is to gourmet cooking

Home page: http://marc.merlins.org/   |   Finger marc_f at merlins.org for PGP key

Previous message: [svlug] Bind Vulnerabilities
Next message: [svlug] Bind Vulnerabilities
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the svlug mailing list