06-27-2007 08:18 AM
Hi,
I have a dns server sitting on a private subnet behind the router which does private-public translations. The reverse (ptr) record queries are being re-written by the router to inside subnet and when they hit my dns box they essentially break.
As I found out, this is a feature of the DNS-ALG.
Is there a way to disable this dns packet re-write?
Thanks!
07-03-2007 10:21 AM
DNS-ALG must be implemented in NAT-PT routers to facilitate name to address mapping. The DNS-ALG is capable of translating IPv6 addresses in DNS queries and responses into their IPv4 address binding.
Obviously DNS, responsible for domain name/IP address mapping, is impacted by NAT. From simple query handling to zone transfers, a robust DNS ALG is defined by RFC 2694 [9] .
07-05-2007 06:34 AM
In reply to my own question, the dns-alg functionality can be disabled with static inside-outside mappings by means of adding 'no-payload' option in the statement.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: