[c-nsp] Best practice to put a DNS server at same lan segment as
main internet gateway
Kim Onnel
karim.adel at gmail.com
Tue Jun 21 03:15:55 EDT 2005
Hi,
I must put 2 servers at the same LAN segment where the internet gateway is,
i have a 506 PIX and the servers are supposed to be tight, but still i feel
that its dangerous to do that.
if i understand correctly, i will give the DNS server a private IP and let
it PAT through the PIX to the DNS ports, for added security, i've placed it
on a different switch.
Any suggestions ideas, is there recommended configurations on PIX in this
case ?
Regards
More information about the cisco-nsp
mailing list