Hi Alberto, > Does PF NAT have support for DNS ALG as described in > RFC 2694 - DNS extensions to "Network Address > Translators" (changing IP addresses in DNS payloads > for certain DNS traffic types based on NAT entries)?
AFAIK, no, this is not supported, and this is not planned to be. > If not, what is the PF recommended way for avoiding > issues with DNS/NAT when the DNS server and DNS > clients are on different sides of the NAT? I would advice you to create a DNS server for the internal side. Another solution that I'm currently using (but it may not be applicable in you case) is to move the DNS server in the internal network. Then I use Bind9's zones to make a different reply whether the request is coming from the internal network or from Internet). Regards, -- Jeremie Le Hen < jeremie at le-hen dot org >< ttz at chchile dot org > _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"
