i set up an openbsd machine to work as a firewall/nat machine, partly following the tutorial here
near the end of it, it says that i need to configure all of my internal clients to use my isp's dns servers... that sucks!
in linux that is all taken care of you (i think) by setting up a non-forwarding dns server (one that asks dns servers for updates but does not reply with internal hostnames). my question is do i have to do this for the internal machines to get out? i've always put the firewall's address down as the dns server cuz i figure if something needs to be known, it will make all the necessary queries for anything the internal network needs to know.
i could just toos the box in there and see how it works, but i figured i'd ask first.
how did you do it n0c?
near the end of it, it says that i need to configure all of my internal clients to use my isp's dns servers... that sucks!
in linux that is all taken care of you (i think) by setting up a non-forwarding dns server (one that asks dns servers for updates but does not reply with internal hostnames). my question is do i have to do this for the internal machines to get out? i've always put the firewall's address down as the dns server cuz i figure if something needs to be known, it will make all the necessary queries for anything the internal network needs to know.
i could just toos the box in there and see how it works, but i figured i'd ask first.
how did you do it n0c?
