Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] DNS requests making it through the firewall !

To: <[email protected]>
Subject: RE: [FW1] DNS requests making it through the firewall !
From: "Will Schwartz" <[email protected]>
Date: Fri, 27 Apr 2001 08:12:19 -0400
Importance: Normal
In-reply-to: <[email protected]>
Sender: [email protected]

I would have to hazard a guess here that some internet DNS (a DMZ DNS server
perhaps) is capable of hitting the internal DNS server. Now, there is a
policy property for DNS (rule 0) that if is left on, people from the outside
can make DNS requests to a machine inside. I would check for DNS coming in
on rule 0 (are you logging rule 0?) from an outside source.

Or maybe there is a DNS on the DMZ that is setup as a secondary for the
internal server? And that is pulling records?

If that's not it. What is the structure of your DNS layout?

hope it helps...
will


-----Original Message-----
From: [email protected]
[mailto:[email protected]]On Behalf Of
Scott Kellerman
Sent: Tuesday, April 17, 2001 2:27 PM
To: [email protected]
Subject: [FW1] DNS requests making it through the firewall !



I have noticed that when I'm at home, not connected to our network at work,
I have the ability to use our internal DNS server to resolve address' on my
home machine.  I have no access set up to our DNS servers from the outside,
and when I watch the logs, I see nothing come in to the internal DNS server
when I use it from home .....But it resolves the address' of even internal
non routable machines from home.

Any ideas why ?

Thanks.
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com



============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] Session Authentication and Crypt
Next by Date: [FW1] Source + Destination NAT
Previous by thread: [FW1] Session Authentication and Crypt
Next by thread: Re: [FW1] DNS requests making it through the firewall !
Index(es):
- Date
- Thread