- for normal queries, UDP/53.
- for zone transfer, TCP/53. so secondary servers will need to go to TCP/53
on the primary.
if you use bind, you can set up different configurations, such as changing
the ports. This should
only be used "internally" as public clients/servers will only try the
"well-known" port.
But while I am in:
- why set up a secondary server inside? I mean who is supposed to access
it? if it is for public use,
why not put it on the FW? (and I hear them, with knifes in the hands,
shouting the traditionnal "oh no,
not on the firewall, never on the firewall, nothing on the firewall", so I
pump up the volume until my
headphones become impermeable to the psalmody).
Better again, find someone outside who accepts to "be your secondary". your
ISP for example. or a friend...
regards,
mouss
At 17:27 19/09/00 +0530, BabuVS wrote:
>Hi,
> I want to place my Primary DNS in DMZ and Secondary DNS in my local
>LAN (Behind Firewall). What services and ports I need to enable on the
>firewall.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
