Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
538
Views
0
Helpful
1
Replies

Outgoing traffic translation

support
Level 1
Level 1

‎03-17-2012 06:05 PM - edited ‎03-07-2019 05:37 AM

I have an internal network that is nat to an external IP aaa.bbb.ccc.ddd

I also have a 3-bit public subnet that terminates on the external IP.

On my internal network is a DNS server and I have used one of the public subnet IP as my DNS IP and mapped port 53 tcp/udp to the DNS server.

Incoming dns requests work well.

My problem is the secondard DNS is external.

Notify messages from the primary DNS arrive at the secondard DNS from the external NAT IP aaa.bbb.ccc.ddd and not from the public subnet IP address. The secondard DNS rejects the notify messages.

Is there a simple solution to my problem? Can I map outgoing port 53 from the DNS server to the public subnet IP?

I have a 887W

regards, Mark

Labels:
0 Helpful
1 Reply 1

Kyle McKay
Level 1
Level 1

‎03-21-2012 12:40 PM

If I am understanding your question correctly, you want to allow your internal DNS server to talk to a secondary, external DNS server  - however when the external DNS server receives packets from the internal DNS server, they have a source IP address of the external NAT address instead of the DNS server's real IP?. Is that correct ?

If your internal DNS server is already assigned a public IP, it does not need to be NAT'd. You could deny the IP of your DNS server from being NAT'd through the ACL of your NAT configuration.

0 Helpful
Customers Also Viewed These Support Documents