CSS 11501 DNS security question

Answered Question
Feb 22nd, 2008
User Badges:

I have two CSS devices that I have a working config to do failover using the DNS feature.


The CSS will be the authority for my hosnames and my ISP will point to them.


The CSS will not be caching any information.


What other vulnerabilities or security concerns should I be concerned about?


Does the CSS have any vulnerabilities to DNS poisoning?

Correct Answer by Gilles Dufour about 9 years 4 months ago

The CSS is not a true dns server.

It has no cache and can only serve the dns name that were configured.

So no security concerns here.


Gilles.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Gilles Dufour Fri, 02/29/2008 - 04:18
User Badges:
  • Cisco Employee,

The CSS is not a true dns server.

It has no cache and can only serve the dns name that were configured.

So no security concerns here.


Gilles.

Actions

This Discussion