[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] DNS requests making it through the firewall !
I would have to hazard a guess here that some internet DNS (a DMZ DNS server perhaps) is capable of hitting the internal DNS server. Now, there is a policy property for DNS (rule 0) that if is left on, people from the outside can make DNS requests to a machine inside. I would check for DNS coming in on rule 0 (are you logging rule 0?) from an outside source. Or maybe there is a DNS on the DMZ that is setup as a secondary for the internal server? And that is pulling records? If that's not it. What is the structure of your DNS layout? hope it helps... will -----Original Message----- From: [email protected] [mailto:[email protected]]On Behalf Of Scott Kellerman Sent: Tuesday, April 17, 2001 2:27 PM To: [email protected] Subject: [FW1] DNS requests making it through the firewall ! I have noticed that when I'm at home, not connected to our network at work, I have the ability to use our internal DNS server to resolve address' on my home machine. I have no access set up to our DNS servers from the outside, and when I watch the logs, I see nothing come in to the internal DNS server when I use it from home .....But it resolves the address' of even internal non routable machines from home. Any ideas why ? Thanks. _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|