Firewall Wizards mailing list archives

Re: DNS forwarding

From: trall () almaden ibm com
Date: Fri, 2 Oct 1998 23:05:39 -0700

For example if internal host foo.local.net asks for www.external.com,
should the firewall forward the query directly to a root server or should
it forward the query to, for example, the ISP's cacheing server?
<<

Forwarding consists of sending a recursive query to the forwarder targets.
The root servers, in general, do not allow recursive queries (they return a
referral instead).  Use  your ISP's servers (or some other non-root server
that supports recursive queries).

Tony Rall



My thought has always been to forward to the local cacheing server to take
load off the root servers (in the example above, surely the info for an
appropriate .com server is cached in the ISP's server).  I have also heard
that all firewalls should forward to the root server.

Current thread:

DNS forwarding John McDermott (Oct 02)
- <Possible follow-ups>
- Re: DNS forwarding trall (Oct 05)
- Re: DNS forwarding Bill_Royds (Oct 05)
- Re: DNS forwarding Randy Garbrick (Oct 07)