Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

DNS-ALG - how to disable?

Hi,

I have a dns server sitting on a private subnet behind the router which does private-public translations. The reverse (ptr) record queries are being re-written by the router to inside subnet and when they hit my dns box they essentially break.

As I found out, this is a feature of the DNS-ALG.

Is there a way to disable this dns packet re-write?

Thanks!

2 REPLIES
Silver

Re: DNS-ALG - how to disable?

DNS-ALG must be implemented in NAT-PT routers to facilitate name to address mapping. The DNS-ALG is capable of translating IPv6 addresses in DNS queries and responses into their IPv4 address binding.

Obviously DNS, responsible for domain name/IP address mapping, is impacted by NAT. From simple query handling to zone transfers, a robust DNS ALG is defined by RFC 2694 [9] .

New Member

Re: DNS-ALG - how to disable?

In reply to my own question, the dns-alg functionality can be disabled with static inside-outside mappings by means of adding 'no-payload' option in the statement.

946
Views
0
Helpful
2
Replies