Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
216
Views
1
Helpful
8
Replies

expressway record

Toss Leey
Level 1
Level 1

‎12-24-2024 04:29 AM

I have dns domain on dmz (.dmz.com) and have separate dns domain on internal (lan.com), my question is if i create A records for expressway-E will be on DNS in DMZ Domin which different than servers on internal dns, is there issue on that, ?

Labels:
0 Helpful
8 Replies 8

Roger Kallberg
VIP
VIP

‎12-24-2024 05:30 AM

This is one of the deployment options outlined in the configuration guides. For details please see the documentation page Expressway Configuration Guides 



Response Signature


0 Helpful

Nithin Eluvathingal
VIP
VIP

‎12-25-2024 09:38 PM - edited ‎12-29-2024 03:17 AM

Expressway E will always be in your public domain, i assume  your DMZ domains is your Public Domain. Create a zone in your internal DNS and add an A record under this zone that resolves to your Expressway E's internal NIC IP. This way, Expressway C  can connect to Expressway E via its internal NIC, while external connections will reach the Expressway public interface.

This applies to the dual NIC configuration. I'm not very familiar with the single NIC configurations of Expressway E.



Response Signature


0 Helpful

Roger Kallberg
VIP
VIP
In response to Nithin Eluvathingal

‎12-26-2024 12:37 AM

Why would internal clients connect to the E? Those should resolve the internal SRV record and bypass Expressway altogether. Or am I’m missing something in the OPs question?



Response Signature


0 Helpful

Nithin Eluvathingal
VIP
VIP
In response to Roger Kallberg

‎12-29-2024 03:18 AM

My apologies for the confusion. I didn't mean that internal devices need to communicate with the Expressway, as it's not required. What I was trying to say is that C should resolve the hostname of E to the internal NIC.



Response Signature


0 Helpful

Toss Leey
Level 1
Level 1

‎12-31-2024 10:54 PM

the expressway-E dual nic which both in DMZ zone in two subnet, and Expressway-C in internal Zone, and each zone has own domain/dns

0 Helpful

Nithin Eluvathingal
VIP
VIP
In response to Toss Leey

‎01-01-2025 04:06 AM

I didn't quite understand what you meant by your reply.

Expressway E will be in the DMZ and must be in your public domain, while the C will be in the internal domain. The Expressway E's external NIC IP will be NATed to the public IP, and the internal NIC IP  will be used for the C to communicate. The C resolves the FQDN of the E server and connects with the internal NIC IP using the DNS entry you created in your internal DNS for public zone.

 



Response Signature


0 Helpful

Toss Leey
Level 1
Level 1
In response to Nithin Eluvathingal

‎01-07-2025 12:17 AM

the expressway-E both LAN1/LAN2 in DMZ zone, LAN2 will be natted to public and LAN1 will be communicate with expressway-C but the exp-c will not in same subnet as exp-e, so i have to create same dsn record for exp-E in DMZ zone dns and in internal zone dns ?

0 Helpful

Nithin Eluvathingal
VIP
VIP
In response to Toss Leey

‎01-07-2025 02:14 AM

First of all, I assume the your DMZ domain is the Public Domain.

In that case, the Expressway will be in the Public Domain.

Let's assume abc.com is your public domain and your internal domain is xyz.org. The Expressway domain will be abc.com. When Expressway C wants to communicate with E using the FQDN, which is technically the Internal NIC of the Expressway, there is no record that can resolve it internally.

So, what we do is create a zone abc.com internally and create an A record saying expressway.abc.com, which resolves to the IP address of the Expressway's Internal NIC.

Hope this makes it clearer.



Response Signature


Customers Also Viewed These Support Documents