[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] NG AI DNS settings
I made these changes to the existing NT box and it seemed to improve performance a bit. It was configured for the ISP's DNS on both cards. Actually the DNS server settings are global on NT, you can't set them differently for each card. It now properly resolves network names in the log file. I'm assuming that you meant the NIC connected to the internal network when you said the first card. Thanks for your help. Robert -----Original Message----- From: Brockhoven, Werner <[email protected]> To: [email protected] <[email protected]> Sent: Wed Aug 20 02:55:00 2003 Subject: Re: [FW-1] NG AI DNS settings Hello, Since you are running on windows 2000, the recommended way to configure dns is to only put dns servers on 1 interface and not both. The dns server that is configured there SHOULD be able to provide ALL the dns responses that windows need. So in your case I would recommended configuring you internal dns server on the first NIC of your machine and this internal dns server should be able to forward dns requests to the Internet/your external dns servers and thus providing resolution for every requests it receives. The way dns resolution works on windows 2000 as per my understanding is as follows: - NIC's in win2000 will have a certain priority to them - windows will query the dns servers on each NIC in this specific order Example: NIC1 - dns1 - dns2 NIC2 - dns3 In this configuration, windows will first query dns1, if it DOES NOT receive any response, it will query dns2, if still does not receive a response it switches to dns3. Important here to understand is that, a 'I DO NOT KNOW' response from the queried dns server will stop any further queries to other dns servers on the same or other NIC's. Regards, Werner -----Original Message----- From: Robert Mezzone [mailto:[email protected]] Sent: woensdag 20 augustus 2003 00:48 To: [email protected] Subject: [FW-1] NG AI DNS settings I'm in the process of building a new server running NG AI on WIN2K SP3. May be a dumb question but what is the correct DNS entries for the internal and external NIC. Should they both be blank, should the internal NIC point to my internal DNS servers and the external NIC to my ISP's DNS servers, does it even matter... Any help is greatly appreciated. Robert ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|