RE: [fw-wiz] Internet accessible screened subnet - use public or private IPs?
From: Behm, Jeffrey L. (BehmJL_at_bvsg.com)
Date: 07/26/05
- Previous message: Marcus J. Ranum: "RE: [fw-wiz] Internet accessible screened subnet - use public orprivateIPs?"
- Maybe in reply to: Matt Bazan: "[fw-wiz] Internet accessible screened subnet - use public or private IPs?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <sanford.reed@reed-assoc-llc.com>, <firewall-wizards@honor.icsalabs.com> Date: Tue, 26 Jul 2005 08:51:06 -0500
From: Sanford Reed
> 2. DNS - This is where most of the problems lay. Due to the time
> (3 to 5 days) needed for DNS changes to propagate you could
> have some connectivity issues unless you can 'mirror' the
> Public services onto both address subnets for a short period.
Or plan enough ahead (i.e. greater than your current TTL) and lower the
TTL in your affected DNS zones to make the propagation faster (at the
expense of more DNS queries due to the lower TTL).
Jeff
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Marcus J. Ranum: "RE: [fw-wiz] Internet accessible screened subnet - use public orprivateIPs?"
- Maybe in reply to: Matt Bazan: "[fw-wiz] Internet accessible screened subnet - use public or private IPs?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
