Internal vs external domain addressing
Brian Fahrlander
brian at fahrlander.net
Tue Oct 5 18:58:52 UTC 2004
On Tue, 2004-10-05 at 13:40, Paul Howarth wrote:
[ Sorry- I overlooked the beginning of this thread! ]
> On Tue, 2004-10-05 at 19:08, antonio.nunes at lifefoundation.plus.com
> wrote:
> > On our setup when we want to address our server (used both for email and http) from the internal network we need to address it as "machine.ourdomain.com".
> > When connecting from outside the network (through the internet) we address the server as "ourdomain.com". How can I configure our BIND server (FC2) so that we can use the
> > same address regardless of where we are sending from? Can I make settings so that "machine.ourdomain.com" is recognised on the internet, or do I need to contact our ISP for
> > that?
Try this: your company probably has a 'main' dns machine it uses to
cache the requests. Create a "ourdomain.local" zone and use it to put
the hosts in it with the behind-the-firewall addresses.
Here, I have kamakiriad.local. It's clear to both me AND the dns
that this is a phoney-baloney, plastic-banana zone which isn't reachable
from the outside. (Which is why it's not a .com/.net/etc)
I've used this system for about a decade; it's accurate, easy to
remember, and keeps the seperation of inside and out very clear. Just
be sure to put ourdomain.local in the /etc/resolv.conf file so you can
just use the hostnames (as usual).
Also inform your mailer to masquerade the usual way when NAT is
involved.
Enjoy!
--
------------------------------------------------------------------------
Brian Fahrländer Christian, Conservative, and Technomad
Evansville, IN http://www.fahrlander.net
ICQ 5119262
AIM: WheelDweller
------------------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20041005/1725f7f7/attachment-0001.sig>
More information about the fedora-list
mailing list