Firewall Wizards mailing list archives
RE: Internet accessible screened subnet - use public or private IPs?
From: "Behm, Jeffrey L." <BehmJL () bvsg com>
Date: Tue, 26 Jul 2005 08:51:06 -0500
From: Sanford Reed
2. DNS - This is where most of the problems lay. Due to the time (3 to 5 days) needed for DNS changes to propagate you could have some connectivity issues unless you can 'mirror' the Public services onto both address subnets for a short period.
Or plan enough ahead (i.e. greater than your current TTL) and lower the TTL in your affected DNS zones to make the propagation faster (at the expense of more DNS queries due to the lower TTL). Jeff _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Internet accessible screened subnet - use public orprivateIPs?, (continued)
- Re: Internet accessible screened subnet - use public orprivateIPs? David Lang (Jul 25)
- Re: Internet accessible screened subnet - use public orprivateIPs? Victor Williams (Jul 25)
- RE: Internet accessible screened subnet - use public orprivateIPs? lordchariot (Jul 25)
- RE: Internet accessible screened subnet - use public orprivateIPs? Marcus J. Ranum (Jul 26)
- RE: Internet accessible screened subnet - use public orprivateIPs? R. DuFresne (Jul 27)
- RE: Internet accessible screened subnet - use public orprivateIPs? Luis Bruno (Jul 30)
- RE: Internet accessible screened subnet - use public orprivateIPs? Paul D. Robertson (Jul 30)
- Re: Internet accessible screened subnet - use public orprivateIPs? Dale W. Carder (Jul 30)
- Re: Internet accessible screened subnet - use public orprivate IPs? Marcus J. Ranum (Jul 26)
- RE: Internet accessible screened subnet - use public or private IPs? Sanford Reed (Jul 25)