[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [FW1] Internal DNS
Title: Internal DNS
It is fairly easy to do exactly what you want by
just following the white papers. I went through it with little to no experience
with FW-1 and got it to work. If you have problems the FIRST thing to check is
syntax, spaces, etc in those files. It is very very picky!
Unfortunately, the internal and external DNS
servers have totally different roles. The internal DNS is aware of
the internal websites and so forth... Basically, I want my VPN users to
download SecuRemote from CheckPoint, download the necessary ".C" files from
FW1 which will allow such users as AOL users using SecuRemote to know when to
use an internal DNS and when not to. By reading the check point
documentation I have come to the conclusion that I need to create a
"dnsinfo.C" file so that SecuRemote will know when to use the internal
DNS. I need guidance... Is there a better way of doing this than
creating this dnsinfo.C file.
Thank You
Keyvan -----Original Message----- From: [email protected]
[mailto:[email protected]] Sent: Tuesday, January 30, 2001 10:32
AM To: KMoussavi;
[email protected] Subject: RE: [FW1] Internal
DNS
Give users two DNS servers one internal one
external that way if the first fails it will automatically use the second and be transparent to the
user.
The initial order
is up to you.
Andrew
Shore BTcd Information Systems Engineering
Internet & Multimedia
I have currently set up a VPN successfully and
am capable of gaining secure access to my Intranet through a dial up ISP
using SecuRemote. Where the problem occurs is when I try to access
any internal websites through the ISP. I can only access the
internal websites if I enter the IP address of the site (only works for
the site; if I try to open a hyperlink I get a "host name" error because
of lack of DNSing) or specify a specific internal proxy server under the
proxy settings of IE. I have also created a dnsinfo.C file but it
did not resolve the problem. Basically, what I want to do is to have
the users that are trying to connect to internal websites automatically
have the dns servers available to them. I do not want them to
continue using the internal DNS servers for accessing "internet"
websites. Please let me know how I can resolve this
problem.
Thank You
Keyvan
|