[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] Firewall-1 NAT/DNS issue

To: sirving@ca.ibm.com
Subject: Re: [FW1] Firewall-1 NAT/DNS issue
From: Lance Spitzner <lance@stan.ksni.net>
Date: Wed, 8 Sep 1999 14:21:38 -0500 (CDT)
Cc: "Espinola, Micheal" <micheale@ix.netcom.com>, "'Firewalls@lists.gnac.net'" <Firewalls@lists.gnac.net>, "'fw-1-mailinglist@lists.us.checkpoint.com'" <fw-1-mailinglist@lists.us.checkpoint.com>

    [ The following text is in the "X-UNKNOWN" character set. ]
    [ Your display is set for the "US-ASCII" character set. Some ]
    [ characters may be displayed incorrectly. ]


On Wed, 8 Sep 1999 sirving@ca.ibm.com wrote:

> ·    Configure your DNS server to have a static address translation.
> ·    Configure FireWall-1 to translate the "low" port to a "high" port instead.
> I currently only know how to do this on Unix, not NT, so don't ask. ;-)

Old version of BIND use port 53 as the source for DNS lookups (version 4.x).
New version of BIND uses port >1023 as the source for DNS lookups (version 8.x)

Hope that helps :)

Lance Spitzner
http://www.enteract.com/~lspitz/papers.html



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] CSM Proxy
Next by Date: [FW1] Access Denied on http (DNS issue)
Prev by thread: Re: [FW1] Firewall-1 NAT/DNS issue
Next by thread: [FW1] SMTP Security Server
Index(es):
- Date
- Thread