[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] SecuRemote and DNS
Hi Check the following link configured with this guide, your SecuRemote client will check the internal DNS for the Domains specified (you can also add your domains which are configured in the userc.C to the local search suffix order on your clients, and you will be able to resolve it without FQDN). http://support.checkpoint.com/kb/docs/public/securemote/4_0/pdf/sr-dns.pdf Regards Stefan "Fowler, Chris" <[email protected]> To: [email protected] Sent by: Mailing list for discussion cc: of Firewall-1 Subject: Re: [FW-1] SecuRemote and DNS <[email protected] point.com> 23.01.2002 17:36 Please respond to Mailing list for discussion of Firewall-1 If I understand your question, you want to be able to resolve host names on SecuRemote clients without a hosts file and you are running split (internal and external) DNS.. the method I am using is to configure the client with a WINS server and add static entries in the WINS server for all non-M$ (*nix) machines. this allows for centralized management of the database; unlike a hosts file which would be difficult to update. Chris Fowler -----Original Message----- From: Muthuraja Ayyanar [mailto:[email protected]] Sent: Wednesday, January 23, 2002 9:37 AM To: [email protected] Subject: [FW-1] SecuRemote and DNS Hi All , I would like to know how to make a SecuRemote client to use internal DNS server for resolving domain names of the resources inside the encryption domain and use the ISP's DNS for resolving Intername Domain names.Since the topology information SecuRemote downloads is basd on IP numbers, (application will be able to make use of the SecuRemote VPN only if the application knows the IP number of the resource) let's say an applications needing to resolve say a server whose domain name is www.mycompany.com which is in the inside network or part of encryption domain how will the traffic will be encrypted if the name can't be resolved to the IP address. Also we can take MS Outlook as an example , let's say i have a MS Exchange server inside of my network and my encryption domain encompasses the MS exchange server and when i connect to my CP VPN-1 server usng SecuRemote using an ISP i get the topology of the enc domain, but how will my outlook client will be able to get to my mailstore if the server name can't be resolved. I don't know if hosts file is the only option. Appreciate your thoughts on this issue, Muthu ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ---------------------------------------------------------------- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer. ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|