Dear Mukul, you would still use the public IP address if the server potentially shall be available world-wide. Kind Regards, Kaulkwappe ---------------------------------------------------------------- From: Mukul Shukla via nsd-users <nsd-users at lists.nlnetlabs.nl> Sent: Wednesday, 22. Jun 2022 ? 09:06 CEST +0200 To: nsd-users at lists.nlnetlabs.nl Subject: [nsd-users] NSD name server behind Firewall Dear All, I have recently started to use NSD as my name server. The NSD server (private IP 192.168.110.14), is behind a firewall (with the public IP 14.139.250.83). I am confused as to what I should set for the "ip-address"? in /etc/nsd.conf? Thanks. Mukul
No, not really. You need to use the IP address that is configured on the server and is reachable - there is a route between public internet and the IP address - either directly or via NAT. E.g. to answer the original question - the NSD must be configured with the IP address that can receive packets meant to reach the NSD. Ondrej -- Ond?ej Sur? (He/Him) ondrej at sury.org> On 22. 6. 2022, at 9:26, Kaulkwappe via nsd-users <nsd-users at lists.nlnetlabs.nl> wrote: > > Dear Mukul, > > you would still use the public IP address if the server potentially shall be available world-wide. > > Kind Regards, > Kaulkwappe > > ---------------------------------------------------------------- > From: Mukul Shukla via nsd-users <nsd-users at lists.nlnetlabs.nl> > Sent: Wednesday, 22. Jun 2022 ? 09:06 CEST +0200 > To: nsd-users at lists.nlnetlabs.nl > > Subject: [nsd-users] NSD name server behind Firewall > > Dear All, > > I have recently started to use NSD as my name server. The NSD server (private IP 192.168.110.14), is behind a firewall (with the public IP 14.139.250.83). > > I am confused as to what I should set for the "ip-address" in /etc/nsd.conf? > > Thanks. > > Mukul > > _______________________________________________ > nsd-users mailing list > nsd-users at lists.nlnetlabs.nl > https://lists.nlnetlabs.nl/mailman/listinfo/nsd-users
Dear Kaulkwappe, Thanks for the prompt reply. I have NATed and port forwarded to my internal name server. The problem is when I use public IP on my internal name server (in /etc/nsd/nsd.conf) as ip-address, it gives me an error when I check with nsd-checkconf. But when I use its own IP address (private) it gives me no error. I also want to make Reverse DNS entries for my email server, so I want to know the correct method of configuring NSD behind a NATed firewall. Thanks. Mukul On Wed, Jun 22, 2022 at 1:05 PM Kaulkwappe via nsd-users < nsd-users at lists.nlnetlabs.nl> wrote:> Dear Mukul, > > you would still use the public IP address if the server potentially shall > be available world-wide. > > Kind Regards, > Kaulkwappe > > ---------------------------------------------------------------- > From: Mukul Shukla via nsd-users <nsd-users at lists.nlnetlabs.nl> > Sent: Wednesday, 22. Jun 2022 ? 09:06 CEST +0200 > To: nsd-users at lists.nlnetlabs.nl > > Subject: [nsd-users] NSD name server behind Firewall > > Dear All, > > I have recently started to use NSD as my name server. The NSD server > (private IP 192.168.110.14), is behind a firewall (with the public IP > 14.139.250.83). > > I am confused as to what I should set for the "ip-address" in > /etc/nsd.conf? > > Thanks. > > Mukul > > _______________________________________________ > nsd-users mailing list > nsd-users at lists.nlnetlabs.nl > https://lists.nlnetlabs.nl/mailman/listinfo/nsd-users >-------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20220622/1825f470/attachment.htm>