bind9 behind firewall stopped responding

Jay Ess lists at netrogenic.com
Tue Jul 28 20:04:10 UTC 2009


 > I have a master DNS (bind9) for a domain. It was working until I put it
 > behind firewall on a DMZ private subnet. It is setup in the way that
 > from internet the DNS maintains its original IP address, that is SAT
 > translated by firewall to the DMZ private subnet. I allowed ports 53
 > TCP/UDP. Should I allow other ports? The IP address of the DNS server
 > was changed by putting it on DMZ private subnet, could be this the
 > problem? Any ideas?
 >
 > For testing, I have used some free dns report webpage, ... it is saying
 > that my DNS is not responding.

If you asks it locally and from the LAN does it answer?
ie "dig @localhost www.sgi.com"
So you can rule out anything else than the fw.




More information about the bind-users mailing list