[Discuss] DNS question about DNSENUM.PL
Derek Martin
invalid at pizzashack.org
Tue Mar 26 10:45:04 EDT 2013
On Tue, Mar 26, 2013 at 10:35:21AM -0400, Rich Pieri wrote:
> You can't hide DNS records...
...except by hosting two different views of your DNS, one public, and
one internal. That can be done using two different DNS servers, one
public-facing and the other entirely inside your firewall; or it can
be done by configuring bind to serve different views from the same
machine on different IPs. I favor the former approach, unless
resources are an issue.
But, any machine that needs to be reachable by name from the outside
needs to have (at least) a public-facing A record.
> Get the DNS cricket book.
> <http://shop.oreilly.com/product/9780596100575.do>
> Get it. Read the first few chapters.
Or even better, read it all. Lots of good info in there.
--
Derek D. Martin http://www.pizzashack.org/ GPG Key ID: 0xDFBEAD02
-=-=-=-=-
This message is posted from an invalid address. Replying to it will result in
undeliverable mail due to spam prevention. Sorry for the inconvenience.
More information about the Discuss
mailing list