Hello :-)
Thanks for help! I`ve go through guide and successfully configured some things that already working fine (NAT`s, port forwarding etc.)
My questions is what is best approach to DNS server ?
I want host my own domain in my internal network. I`ve created VM with Bind server - configured it to handle my own domain. I can confirm that it`s working using dig @localhost mydomain.com , or from other machine inside my network using dig @tardis mydomain.com. But i cannot get it from internet using my WAN IP.
That`s my NAT rules:
TYPE: Dnat
traffic from: Any
Using service: DNS
Going to: WAN Address
Change destination to : Tardis
Automatic firewall rule: Yes
Machine also have SNAT rule to allow connectivity to internet:
TYPE: Snat
traffic from: Tardis
using service: Any
Going to: Internet Ipv4
Change source to : WAN Address
Auttomatic firewall rule: Yes
I cannot go to dns server from internet using for examle dig @my-wan-ip mydomain.com.
Other DNAT rules for example for forwarding SSH working without any problem and I can reach tardis.
That`s my DNS configuration:
Global : Allowed Networks -> Inside Network (that`s network where my Vm`s are)
Forwarders: Google DNS and Tardis (uncitec use forwarders assigned by ISP
Request routing : mydomain.com -> Tardis
I done propabbly something wrong but dont know what.
Simple nmap portscan od my wan ip doesnt showing dns port open
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
