Very Computer

> I am trying to setup a DNS server with one static ip from my ADSL
> provider. My current setup has three computers:

> Linux one used as router/firewall
> Linux two used as web/sendmail/dns server
> Windows machine

> I assigned 192.168.1.1 for the linux one, 192.168.1.9 for linux two, and
>   192.167.1.6 for the windows machine. Let's assume my static ip is
> 999.999.999.999.

> In the A record, I have everything pointed to 192.168.1.9

> mydomain.com. IN A 192.168.1.9
> mail.mydonain.com. IN A 192.168.19
> ns1.mydomain.com. IN A 192.168.1.9

> Since all these are internal address, do I need to setup an A record for
> my static ip? If yes, could you provide some information on how to do
> this? Thanks!

>>If this is a duplicate, I apologize. I sent it once, but I didn't see on
>>the newsgroup.

>>I am trying to setup a DNS server with one static ip from my ADSL
>>provider. My current setup has three computers:

>>Linux one used as router/firewall
>>Linux two used as web/sendmail/dns server
>>Windows machine

>>I assigned 192.168.1.1 for the linux one, 192.168.1.9 for linux two, and
>>  192.167.1.6 for the windows machine. Let's assume my static ip is
>>999.999.999.999.

>>In the A record, I have everything pointed to 192.168.1.9

>>mydomain.com. IN A 192.168.1.9
>>mail.mydonain.com. IN A 192.168.19
>>ns1.mydomain.com. IN A 192.168.1.9

>>Since all these are internal address, do I need to setup an A record for
>>my static ip? If yes, could you provide some information on how to do
>>this? Thanks!

> It would be similar to the above, but you might want to have separate DNS
> server configurations for internet and intranet (you could use an alias IP
> on your DNS box for one of them).  Because you don't really want to
> advertise your private IPs on the internet.

> Note that you can have multiple A records pointing to the same IP, so you
> could have all 3 of the above names pointing at your internet IP, and
> ipchains rules to tell where to locally forward specific incoming ports.

> I simply use /etc/hosts to point the internet hostname of each box to
> itself on an extra loopback IP (127.0.0.2) and private names for the LAN
> IPs (forward and reverse zones), but my DNS is blocked from outside access
> with listen-on and allow-query.  DNS for my internet IP is handled by
> no-ip.com (dynamic DNS for dynamic IP).

>>>Linux one used as router/firewall
>>>Linux two used as web/sendmail/dns server
>>>Windows machine

>>>I assigned 192.168.1.1 for the linux one, 192.168.1.9 for linux two, and
>>>  192.167.1.6 for the windows machine. Let's assume my static ip is
>>>999.999.999.999.

>>>In the A record, I have everything pointed to 192.168.1.9

>>>mydomain.com. IN A 192.168.1.9
>>>mail.mydonain.com. IN A 192.168.19
>>>ns1.mydomain.com. IN A 192.168.1.9

>>>Since all these are internal address, do I need to setup an A record for
>>>my static ip? If yes, could you provide some information on how to do
>>>this? Thanks!

>> It would be similar to the above, but you might want to have separate DNS
>> server configurations for internet and intranet (you could use an alias IP
>> on your DNS box for one of them).  Because you don't really want to
>> advertise your private IPs on the internet.

>> Note that you can have multiple A records pointing to the same IP, so you
>> could have all 3 of the above names pointing at your internet IP, and
>> ipchains rules to tell where to locally forward specific incoming ports.

> David,

> First of all, thanks for the hint.

> Okay, I added the following to my A record in db.mydomain.com:

> ns1.mydomain.com.             IN A 999.999.999.999
> mydomain.com.                 IN A 999.999.999.999
> mail.mydomain.com.            IN A 999.999.999.999

> The 999.999.999.999 is assumed to be my only static ip, and I also added
> a db.999.999.999 file.

> So right now, all I have to do is use iptable from my router/firewall
> machine to forward all the dns request to my internal DNS machine, right
> ? Is this correct?