Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2152
  • Last Modified:

ASA 5510 acting as a DNS proxy

We used to havea firewall that acted as a DNS proxy. We replaced it with a Cisco ASA 5510 that does not have this set up. Now, our webserver is having issues sending meail from teh DMZ because it has no DNS server to use.

Is there a way to set up a DNS proxy on the ASA 5510?
0
amydnaz
Asked:
amydnaz
  • 2
1 Solution
 
AlanConsultantCommented:
Hi,

This may be missing the point, but why not point the webserver at a DNS server?

You could give it OpenDNS (for example):

208.67.222.222
208.67.220.220

Hope that helps,

Alan.
0
 
amydnazAuthor Commented:
That didn't work. I'm stumped as to why we can't seem to get the webserver to recognize DNS.
0
 
AlanConsultantCommented:
Hi,

I am working on the assumption at this point that the DNS settings in the Webserver are pointing at OpenDNS.

Is the webserver connecting to anything outside at all?

What if you attempt a direct connection to, say, www.cnn.com at:

157.166.224.25

Can you connect from a web browser (if there is one on the webserver), or via telnet:

telnet 157.166.224.25 80

If so, what do you get using, say something like, NSLOOKUP on the webserver?  What is showing as the default resolver, and what is its IP address?

Thanks,

Alan.
0

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now