Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Local DNS

Hi

Local DNS needs to resolve external domains i.e ( www.yahoo.com ). Local DNS Server is placed in the inside network. Acces-list is applied on inside, outside, dmz interface

local DNS Server IP : 192.168.10.199

Do I need a static-nat to get this working

cheers

SAM

2 REPLIES

Local DNS

Hello Adam,

If the DNS server needs to be access from the DMZ you will need a static (inside,dmz) and obviously the access-list on the dmz permiting the connection from the DMZ to the DNS server.

I am not sure if I catch your question, please let me know if there is somethin else I can do for you.

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
New Member

Local DNS

Your server certainly needs to get internet access. whether it's static or dynamic PAT, is your choice.

This is not really a firewall issue, if your hosts on the inside can ping by IP and the DNS is on the inside as you mentioned it was.

Try adding forwarders to your DNS box. Use the DNS IPs provided by your ISP.

Good luck

372
Views
0
Helpful
2
Replies
CreatePlease to create content