Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
380
Views
0
Helpful
1
Replies

DNS Doctoring on ISR

ricey
Level 1
Level 1

‎07-24-2008 08:30 AM - edited ‎03-11-2019 06:19 AM

I am trying to set DNS doctoring to prevent us from having to host "public" DNS. The inside translated address is actually hosted on another network over a VPN but I have got it to work fine on the Pix's and ASA's I have, however I cannot get in to work on ISR routers that are acting as firewalls. The commands I have added to the ISR are as follows.....

ip nat inside source list 110 interface Dialer0 overload

ip nat inside source static udp 10.2.1.15 53 85.234.129.35 53 extendable

Any ideas would be greatly appreciated.

Labels:
0 Helpful
1 Reply 1

ricey
Level 1
Level 1

‎07-29-2008 06:03 AM

I have found a fix for this, by creating a "normal" static nat entry this has fixed it.

i.e. without the DNS awitch

ip nat inside static 10.2.1.15 85.234.129.35

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card