DNS Doctoring on ISR

Unanswered Question
Jul 24th, 2008
User Badges:

I am trying to set DNS doctoring to prevent us from having to host "public" DNS. The inside translated address is actually hosted on another network over a VPN but I have got it to work fine on the Pix's and ASA's I have, however I cannot get in to work on ISR routers that are acting as firewalls. The commands I have added to the ISR are as follows.....


ip nat inside source list 110 interface Dialer0 overload

ip nat inside source static udp 10.2.1.15 53 85.234.129.35 53 extendable


Any ideas would be greatly appreciated.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ricey Tue, 07/29/2008 - 06:03
User Badges:

I have found a fix for this, by creating a "normal" static nat entry this has fixed it.

i.e. without the DNS awitch


ip nat inside static 10.2.1.15 85.234.129.35

Actions

This Discussion