Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

Pix 506 Version 6.22 setting up DNS

We have two offices. One has the pix and the other office doesn't. We have trusted network setup.

Both sites use Windows 2000 Server with DNS - how is it possible to have local DNS work with both sites?


Re: Pix 506 Version 6.22 setting up DNS

A 10user pix 501 is 400 bucks. A 50 user one is 800ish, max. Go buy one for the other office, and set up an IPSec tunnel between the sites. This is reallly how you want to proceed if you are going to do any serious networking between the two sites.

If you simply want to have the two sites in the same dns domain, you can configure one side as a secondary, and just do traditional zone transfers through tcp on port 53. But for real active directory harmony, you want dynamic dns functionality, and to have that across two sites you really want to run ms's propriety active directory integrated zone scheme, where all dns traffic is passed via active directory traffic, and you can have multiple masters concurrently. To do this, you really want the dns servers on an interconnected secured network, which is best achieved by point to point data circuits, or an ipsec tunnel between sites.

CreatePlease to create content