Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Another DNS question...

At 4:59 PM -0500 11/22/05, Dan Shoop wrote:
At 11:10 AM -0600 11/22/05, Brendan O'Toole wrote:
In other words, if you're not sure how to drive, stay off the road. It's not like you can't get someone with experience to host your DNS for you. Most NSPs provide DNS hosting for their networks gratis. For those that need hosting, hosting providers abound. In most cases ppl don't need to or shouldn't be running their DNS locally.

Except anyone running NAT who needs resolution of internal addresses, which the OP is...

You don't need DNS for NAT.

I think they he means, if you want to resolve internal, private range IPs, you need to setup DNS, which I have done with help from this group for all my schools in the past.

Dan, you've been very helpful to me over the past week, so I don't want to argue with you, but you have said this to me before, and you're saying it again: don't do it if you don't know how.

If I want a working Mac server, I have to do it. No one else in my district can, and they cannot afford to pay someone to come in and do it. I have no intention of hosting our public DNS records, which is why I have asked, this week, and in the past - how do I prevent polluting, or "leaking" our private DNS info into the public?

I thought Bill's answer to my question is the best I have ever gotten, because everytime I ask the question, I get "If you have to ask...". Aside from reading DNS & Bind (which I have), how am I supposed to learn anything without asking? Just because I read the book doesn't mean I understood it all. If you have no one to ask about these things, then you can read the same chapter 20 times and still not get it. That's why I ask questions of this group, but I also work very hard to do as much research as I can first, until I hit a wall.

You may think I'm stupid because I don't instantly understand everything I read, and that's possible. But I'm trying my best.

But anyway, thanks again. This has been a very helpful thread, although there's obviously some disagreement as to how to keep internal DNS info private. You say blocking all port 53 traffic doesn't cut it. Why not?

Bret

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden
References: 
 >Re: Another DNS question... (From: Dave Pooser <email@hidden>)
 >Re: Another DNS question... (From: Bret Alan <email@hidden>)
 >Re: Another DNS question... (From: Dan Shoop <email@hidden>)
 >Re: Another DNS question... (From: "Brendan O'Toole" <email@hidden>)
 >Re: Another DNS question... (From: Dan Shoop <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.