Split Horizon DNS on DMZ with private IP's (first post)
Hello,
I am working on a project and want to set up a DNS server in a network that has:
- 1 router (cisco) with internet connection on a static public IP.
- 1 DMZ lan with private IP's(192.168.2/24) for my servers (dns, web, mail, ftp) on one dual-homed machine.
- 1 Lan for the company (let's assume the "secure" net)
- 1 registered domain name.
What I wan't to do is set up the dns server (bind 9) in the dmz so that someone from the internet can query the domain and the people from the internal lan can also query, but resolve internal- private ip addresses.
I assumed that I had to imply the split horizon technique and set up 2 bind instances running on the 2 different private IP's (192.168.1.3 and 192.168.2.3) with different zone files for external clients and internal.
For the internal lan, everything is working fine. The problem is that nobody from the Internet can query the nameserver...
Could someone please help??
Dual-homed host is running slackware 10.2
Last edited by jfotop; 04-17-2006 at 08:46 AM.
|