PIX 501 relay client DNS requests out to an internet DNS server?

Discussion in 'Cisco' started by nicough@gmail.com, Nov 17, 2006.

  1. Guest

    router = 10.0.0.254
    pix outside = 10.0.0.1
    pix inside = 192.168.0.254
    client = 192.168.0.1
    client dns = 192.168.0.254

    pix config:

    ip address outside 10.0.0.1 255.255.255.0
    ip address inside 192.168.0.254 255.255.255.0
    route outside 0.0.0.0 0.0.0.0 10.0.0.254
    dhcpd address 192.168.0.50-192.168.0.90 inside
    dhcpd enable inside
    dhcpd dns 192.168.0.254


    How can a PIX 501 relay client DNS requests out to an internet DNS
    server?
    I want to specify the PIX outside address, rather than receive it via
    dhcp.

    Thanks
    Nick
     
    , Nov 17, 2006
    #1
    1. Advertising

  2. Rohan Guest

    <> wrote in message
    news:...
    > router = 10.0.0.254
    > pix outside = 10.0.0.1
    > pix inside = 192.168.0.254
    > client = 192.168.0.1
    > client dns = 192.168.0.254
    >
    > pix config:
    >
    > ip address outside 10.0.0.1 255.255.255.0
    > ip address inside 192.168.0.254 255.255.255.0
    > route outside 0.0.0.0 0.0.0.0 10.0.0.254
    > dhcpd address 192.168.0.50-192.168.0.90 inside
    > dhcpd enable inside
    > dhcpd dns 192.168.0.254
    >
    >
    > How can a PIX 501 relay client DNS requests out to an internet DNS
    > server?
    > I want to specify the PIX outside address, rather than receive it via
    > dhcp.
    >
    > Thanks
    > Nick
    >

    There are many ways to do this and it all depends on how much access you
    want between the Inside interface of the firewall to the outside

    Based on what you provided above you could write in the following:

    access-list DNS permit udp 192.168.0.1 255.255.255.0 any eq 53
    global (outside) 1 10.0.0.50-10.0.0.90 netmask 255.255.255.0
    nat (inside) 1 access-list DNS
     
    Rohan, Nov 18, 2006
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Sean
    Replies:
    2
    Views:
    1,572
    S. Gione
    Feb 27, 2004
  2. Nick
    Replies:
    2
    Views:
    2,487
  3. Chris
    Replies:
    7
    Views:
    952
    Chris
    Mar 15, 2007
  4. RG
    Replies:
    2
    Views:
    1,040
    Roman
    Nov 27, 2007
  5. Tyler
    Replies:
    5
    Views:
    1,527
    Marko Uusitalo
    May 22, 2008
Loading...

Share This Page