Gustavo A. Baratto wrote:
..
FW2 is ready, and the IP for DNS2 is already assigned... So, while
DNS2 server is not ready, is it possible to setup FW2, so DNS queries
from the external world can be redirected to DNS1?
It would be basically an rdr reflection on the external interface,
Gustavo A. Baratto wrote:
..
FW2 is ready, and the IP for DNS2 is already assigned... So, while
DNS2 server is not ready, is it possible to setup FW2, so DNS
queries
from the external world can be redirected to DNS1?
How about a really simple bind config that uses FORWARD to
send all
Well... this actually works:
rdr on $ext_if proto {udp tcp} from any to DNS2_IP port 53 - DNS1_IP
nat on $ext_if proto {tcp,udp} from any to DNS1_IP port 53 - $ext_if
But the man pf.conf says:
--
Redirections cannot reflect packets back through the interface they
arrive on, they can
On Mon, Mar 20, 2006 at 02:43:32PM -0800, Gustavo A. Baratto wrote:
We have two firewalls (FW1 and FW2) in different locations, just connected
to each other through the internet... We are running a DNS server (DNS1)
inside just FW1. And later on a DNS2 will be inside FW2.
FW2 is ready, and
