Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
308
Views
0
Helpful
1
Replies

DNS Server Behind Pix

david.morrow
Level 1
Level 1

‎05-19-2005 08:03 AM - edited ‎02-21-2020 12:09 AM

Hi all. I am attempting to do something which I would assume is quite simple. I have a Pix 515 running version 6.3

I want to place a publicly accessible DNS server behind the Pix. I created a static NAT entry for the DNS server (which is on a private IP) and access rules to allow TCP and UDP port 53 in to it. It doesn't work.

I have confirmed that an access rule to port 80 on the server works.'

Is there something special I must do to make this work?

0 Helpful
1 Reply 1

Cisco4Life
Level 1
Level 1

‎05-20-2005 09:47 AM

David-

Here is what I have on my Pix and it works just great. I am using Pix 520 v6.34.

access-list 100 permit tcp any host xxx.xxx.xxx.xxx eq 53

access-list 100 permit udp any host xxx.xxx.xxx.xxx eq 53

static (inside,outside) xxx.xxx.xxx.xxx (dns_ip_address) 255.255.255.255

fixup protocol dns maximum-length 512

That should allow you to have your DNS server available to the outside for queries and transfers.

Frank

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card