12-28-2020 12:27 AM - edited 12-28-2020 12:35 AM
Hi,
I need to enable MRA on Expressway. On the Expressway-C Traversal zone configuration, the peer address is the Expressway-E FQDN. So do i need to create a A record for Expressway-E on the internal DNS to resolve the FQDN?
Also, is it required to add internal DNS IP on Expressway-E or public DNS is enough?
12-28-2020 12:43 AM
Yes you need A record on internal DNS, that will be based on the deployment. Is your internal domain external domain same ? what kind of deployment, dual Nic or single NIC
if your internal and external domain is different you need to create sub zone for external domain and add A record.
12-28-2020 12:50 AM
Hi Nithin,
Dual NIC deployment and Domain is the same for internal and external.
12-28-2020 01:06 AM
Internal DNS create A record for Expressway E pointing to your Internal NIC ip.
Example:-
Expressway C ip 192.168.1.10
Expressway E internal ip 192.168.1.11
Epxressway E DMZ nic 10.1.1.20 nated to public ip.
Internal A record will resolve to 192.168.1.11.
12-28-2020 02:04 AM
Thanks Nithin.
For the Expressway-E dual NIC deployment, default gateway will be external (DMZ NIC)?
Do i need to add route to internal network as gateway internal NIC?
12-28-2020 02:41 AM
This is from My Lab which is working.
12-28-2020 03:41 AM - edited 12-28-2020 05:13 AM
It depends on your topology. If you like us have the two interfaces on the E node connected to different DMZ networks you’d need to have a route to the internal network. Whereas if you have the internal network interface on E and the C connected to the same network as @Nithin Eluvathingal it’s not required.
12-28-2020 05:02 AM
As @Roger Kallberg the routing depends on your setup. The one which I shared above has E internal NIC and C is on same network.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide