Here's my situation...
I have a DNS Server at the corporate office that I'm trying to access from a remote site.
The topology is like this:
Office DNS Server -> PIX515 -[3DES Tunnel]- PIX501 -> Remote Server
What happens is that I send a request through to the DNS server, and it's supposed to respond with 192.0.0.xxx and instead it comes back with 216.127.xxx.xxx which is an outside mapping of that server.
According to the reference I have, this behavior was initiated with the alias command before 6.2, but in 6.2 and later it does it automatically with outside NAT.
Since I use separate internal and external DNS servers, I would never want this translation to occur for any reason and would like to turn it completely off.
I've been searching the docs at cisco.com but I keep running into the alias command, which I don't think is what I want, since I'd have to do an alias in reverse for every server that has a NAT mapping and that seems counter-productive since it would translate it via NAT, then translate it back via alias.
Any suggestions on keywords to look for or what I'm missing?
I have a DNS Server at the corporate office that I'm trying to access from a remote site.
The topology is like this:
Office DNS Server -> PIX515 -[3DES Tunnel]- PIX501 -> Remote Server
What happens is that I send a request through to the DNS server, and it's supposed to respond with 192.0.0.xxx and instead it comes back with 216.127.xxx.xxx which is an outside mapping of that server.
According to the reference I have, this behavior was initiated with the alias command before 6.2, but in 6.2 and later it does it automatically with outside NAT.
Since I use separate internal and external DNS servers, I would never want this translation to occur for any reason and would like to turn it completely off.
I've been searching the docs at cisco.com but I keep running into the alias command, which I don't think is what I want, since I'd have to do an alias in reverse for every server that has a NAT mapping and that seems counter-productive since it would translate it via NAT, then translate it back via alias.
Any suggestions on keywords to look for or what I'm missing?
Facebook
Twitter