RE: dns firewalls and mx records for internally hosted domains

To: "'bounce-debian-firewall=mferrari=decidir.net@lists.debian.org'" <bounce-debian-firewall=mferrari=decidir.net@lists.debian.org>, Debian Firewall - LIST <debian-firewall@lists.debian.org>
Subject: RE: dns firewalls and mx records for internally hosted domains
From: Martin Ferrari - DECIDIR Argentina <mferrari@decidir.net>
Date: Fri, 11 Jun 2004 11:00:36 -0300
Message-id: <[🔎] 0EF8394892B74144ACF999556D1FD6BB7DEE06@dexter.decidir.net>
Reply-to: mferrari@decidir.net

> Sometime ago this list, or the security list, provided a common 
> consensus that www servers hosted inside a firewall, and 
> serving pages 
> to both inside and outside should have resolve www.domain.com to the 
> internal IP for those inside the firewall.  This requires a 
> dns record 
> for the domain on the internal dns servers and works like a champ!
> 
> It also seems to be causing issues with email sent to the domain from 
> inside the firewall.  All mail, sent from inside, is generating an 
> "unroutable address" error.

I's normal, the mail routed inside doesn't see the "external" DNS zones, so
it doesn't see the MX.
I've always worked this out using an internal DNS which has all the services
I would need: hosts, mx, cnames, but changing the IP addresses.

Reply to:

Follow-Ups:
- Re: dns firewalls and mx records for internally hosted domains
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Banner Advertisements
Next by Date: Re: dns firewalls and mx records for internally hosted domains
Previous by thread: Re: dns firewalls and mx records for internally hosted domains
Next by thread: Re: dns firewalls and mx records for internally hosted domains
Index(es):
- Date
- Thread