• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 318
  • Last Modified:

Anonymous IP more secure than one with DNS Record?

Most of our user workstations use the same general NAT'd address of x.x.x.10 for their external IP.  We have a group of users that would like to access a service that requires a DNS pointer with a certain domain (in this case government).  I've always assumed it was more secure to have an anonymous IP without a DNS record pointing any port scanners right to us.  The other alternatives are to ask the service to put in a static pointer for us or make an exception for our IP.  

Do you think there a significant vulnerability increase if I request a DNS record?  
0
dslntadmin
Asked:
dslntadmin
1 Solution
 
c0sCommented:
there is no extra vulnerability if you have dns, it just makes is look more legit comparing with an ip without dns
0
 
bill30Commented:
A DNS record would only add security risk if a hacker got ahold of the DNS records and you had computers named:

boringcomputer1
EveryonesCreditcardinformation
noonecareswhatisonthiscomputer
boringcomputer2

By using an arbitrary name, you can have DNS resolve the DHCP to make it easier for people to connect to their computers and just have names that dont give out information like:

Dell1000
Dell1001
HP1000
HP1001

Regarding your question on DNS pointing a hacker right to you, its not hard to have a computer find all available IPs.
0
 
dslntadminAuthor Commented:
Thank you, your answer adds clarity to the issue.  I know it's not hard to find available IPs, just didn't want to add one more way!  

Thanks,
Clint
0

Featured Post

Prep for the ITIL® Foundation Certification Exam

December’s Course of the Month is now available! Enroll to learn ITIL® Foundation best practices for delivering IT services effectively and efficiently.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now