mr_dirt
join:2006-02-14
Denver, CO
edit:
May 18th, @11:35PM
| reply to elnino
Re: [Config] NAT static
NAT is one of the worst-documented aspects of IOS.
IOS NAT offers DNS re-write, so that static NAT entries, if an external NAT is queried for a static NATed host, will provide the internal address. The only mention I've ever seen for this is on this page:
»www.cisco.com/en/US/technologies···2b9.html
There is a line with no link to docs or any futher informations, that reads, "DNS "A" and "PTR" queries".
Amazingly enough, (and for the love of God, I can't understand why no one has bothered to write anything more) IOS intercepts DNS queries for any host that it carries a static NAT for, and replies with the NAT inside address. I've done some limited testing of this, and it seems to work, but I've never applied it in fear that it will mysteriously stop working. |
