[Soekris] DNS Non-delegated local domain behind NATed firewall
Jan Ceuleers
jan.ceuleers at computer.org
Fri Nov 3 13:54:18 UTC 2006
Bill Maas wrote:
> Is there any clear policy or guideline on this topic? I've looked for an
> RFC about this subject, but there doesn't seem to be one. What is the
> safest option for domain naming behind a NAT box?
What I do is claim an entirely unused domain. My local name server is
configured to be authoritative for it. My name server is not visible
from the Internet, and is in fact protected by several layers of filters
(NAT, firewall, application-level ACL) in order to avoid any possibility
of it causing problems on the Internet.
Jan
More information about the Soekris-tech
mailing list