Dear all,
I have a simple question regarding the resolution of hostnames with private
IP addresses.
One of our corporate customers would like to (mis)use DNS to allow the
resolution of intranet hosts. The customer operates its own global VPN but
for operational reasons cannot install / manage local DNS it each and every
of its locations. Also, the customer does not want to operate a centralised
intranet DNS service as the Internet connectivity, which is local in each
country, in some of its remote locations would be severely affected (as DNS
requests would take inordinate amount of time).
I have tried to research this but could not find anything that would be
prevent the resolution to private IP addresses. The main concern is that
ISP's would filter out their DNS cache to prevent this.
Any comments?
Best regards,
Greg Cipollone
Technischer Direktor
***************************************************************
Twinwave Intranet und Internet Services GmbH
Schmidtstr. 51, 60326 Frankfurt
Tel.: +49-69-75 086-0, Fax: +49-69-75 086-555
E-Mail: g.cipollone(a)twinwave.net
Web-Seite: http://www.twinwave.net
***************************************************************
I remember researching this too, and remember that we actually put a 10/8
address in the public DNS. AFAIK it is not considered good practice.
I also remember a comment by one of my colleagues that the typical VPN
software should also be able to handle this issue. Once you have a secure
tunnel into your corporate network, you should be able to use the (single)
DNS on your intranet.
Peter van Eijk, Deloitte & Touche Bakkenist, Network Strategy &
Architecture, tel: +31 6 53515927, www.van-eyk.net/pve,
pvaneijk(a)deloitte.nl, pve(a)van-eyk.net
> -----Original Message-----
> From: owner-dns-wg(a)ripe.net [mailto:owner-dns-wg@ripe.net]On Behalf Of
> Greg Cipollone
> Sent: 16 January 2002 15:23
> To: dns-wg(a)ripe.net
> Subject: Question: resolution of private IP addresses
>
>
> Dear all,
>
> I have a simple question regarding the resolution of
> hostnames with private
> IP addresses.
>
> One of our corporate customers would like to (mis)use DNS to allow the
> resolution of intranet hosts. The customer operates its own
> global VPN but
> for operational reasons cannot install / manage local DNS it
> each and every
> of its locations. Also, the customer does not want to operate
> a centralised
> intranet DNS service as the Internet connectivity, which is
> local in each
> country, in some of its remote locations would be severely
> affected (as DNS
> requests would take inordinate amount of time).
>
> I have tried to research this but could not find anything
> that would be
> prevent the resolution to private IP addresses. The main
> concern is that
> ISP's would filter out their DNS cache to prevent this.
>
> Any comments?
>
> Best regards,
>
> Greg Cipollone
> Technischer Direktor
>
>
> ***************************************************************
> Twinwave Intranet und Internet Services GmbH
> Schmidtstr. 51, 60326 Frankfurt
> Tel.: +49-69-75 086-0, Fax: +49-69-75 086-555
> E-Mail: g.cipollone(a)twinwave.net
> Web-Seite: http://www.twinwave.net
> ***************************************************************
>
>
This e-mail message and its attachments are subject to the disclaimer
published at the following website of Deloitte & Touche :
http://www.deloitte.nl/disclaimer
<http://www.deloitte.nl/index.asp?Pageid=010109135051734>
