Forum Discussion

Eduardo_Vieira's avatar
Eduardo_Vieira
Icon for Altocumulus rankAltocumulus
Apr 20, 2023

Deliver different ips having the same dns zone name but in different views

Good morning gentlemen. I have an interesting case to be solved, the scenario is: I have 2 listening and I have two views, one internal and one external, however the name of the zones are the sam...
application delivery
dns
wideip
Eduardo_Vieira's avatar
Eduardo_Vieira
Icon for Altocumulus rankAltocumulus

But in that case I still have the same problem?

At this point I will have a listening, in this case the 20.20.20.20 and requests will arrive at it and it will respond only to one zone right? So I understand that the problem is the same.

The idea of having 2 listening would be for each one to deliver the resolution of a different view, in this case one delivers INTERNAL and the other EXTERNAL.

Paulius's avatar
Paulius
Icon for MVP rankMVP
Apr 21, 2023

Eduardo_Vieira If your edge firewall has DNS doctoring then you wouldn't have the same issue because lets say you have a NAT that is 20.20.30.10 that nats to private IP 10.10.30.10 with DNS doctoring. If an internal client received any DNS response from anywhere that the response has to pass back through your firewall and the destination of that record is 20.20.30.10 the firewall would change the response to now use 10.10.30.10 which would then send you to the internal destination rather than the public destination.