cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
609
Views
0
Helpful
2
Replies

DNS Rewrite with multiple IPs in reply

andrew.garvin
Level 1
Level 1

If I am on the inside of a FWSM and request a DNS record from a server on the Internet that returns multiple public IPs that are all statics on that FWSM, will the FWSM translate all of the records in the reply to their internal address or only the first one? I have read all the documentation I can find on DNS Rewrite and I don't see anything on how it handles multiple IPs in the DNS reply. I understand how it works when there is only one IP in the reply, I need to know how it handles multiple IPs in the reply. For example when there are two public IPs returned in DNS round-robbining and both IPs have statics mapping to two seperate internal IPs.

2 Replies 2

Marwan ALshawi
VIP Alumni
VIP Alumni

but eather way the client will use one ip at a time

not both so why u need to ask about two ips at the same time?

If I do a DNS query for www.example.com and the zone is configured with two A records, both of those IPs are included in the reply. I understand that the client will only use one of those two IPs, but how does the client decide what one to use? Does it use the first one in the packet or randomly chose it? Either way, what will the FWSM do with a DNS reply that contains multiple IPs if one or more of them have statics defined? If the FWSM does not translate DNS replies that contain multiple IPs at all, then users would not be able to access www.example.com assuming that is on the inside network.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: