Infoblox’s global team of threat hunters uncovers a DNS operation with the ability to bypass traditional security measures and control the Great Firewall of China. Read about “Muddling Meerkat” and the many other threat actors discovered by Infoblox Threat Intel here.

Getting Started

Reply

Authoritative Domain Server Migration

New Member
Posts: 4
317     0

We have multiple domains that are being migrated to Infoblox DDI. One of the domains has internal DNS servers inside of the domain. Other DNS servers in the organization have DNS entries for that domain with NAT IP addresses.

 

Example:

domain 123.com internal dns server lookup a.123.com.

a.123.com = 192.168.1.50

 

domain 123.com lookup to a dns server for a user that is located outside of that domain/location for a.123.com

a.123.com = 172.16.1.50

 

So the external user connects to 172.16.1.50, traffic gets to domain location, firewall NATs the IP address to 192.168.1.50.

 

So question is how can we move DNS to a different location DDI solution and respond with the internal IP addresses for lookups that are coming from that domain location, and respond with the NAT ip addresses for the lookups coming from outside the domain location?

 

Users outside the location are using the DDI solution already.

 

Thanks,

 

Alex

 

Showing results for 
Search instead for 
Did you mean: 

Recommended for You