Manualshelf

R3166-R3206-HP High-End Firewalls Network Management Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
181182183184185186187188189190
172
Figure 92 Network diagram for DNS proxy
2. Configuration procedure
NOTE:
Before performing the following configuration, assume that Firewall, the DNS server, and the host are
reachable to each other and the IP addresses of the interfaces are configured as shown in Figure 92.
a. Configure the DNS server
This configuration may vary with DNS servers. When a Windows server 2000 PC acts as the DNS server,
see “Dynamic domain name resolution configuration example” f
or related configuration information.
b. Configure the DNS proxy
# S p e ci f y t h e D N S s e r ve r 4 .1.1.1.
<Firewall> system-view
[Firewall] dns server 4.1.1.1
# Enable DNS proxy.
[Firewall] dns proxy enable
c. Configure the DNS client
# Enable the domain name resolution function.
<Device> system-view
[Device] dns resolve
# Specify the DNS server 2.1.1.2.
[Device] dns server 2.1.1.2
d. Configuration verification
# Execute the ping host.com command on Device to verify that the communication between the device
and the host is normal and that the corresponding destination IP address is 3.1.1.1.
[Device] ping host.com
Trying DNS resolve, press CTRL_C to break
Trying DNS server (2.1.1.2)
PING host.com (3.1.1.1):
56 data bytes, press CTRL_C to break
Reply from 3.1.1.1: bytes=56 Sequence=1 ttl=126 time=3 ms
Reply from 3.1.1.1: bytes=56 Sequence=2 ttl=126 time=1 ms
Reply from 3.1.1.1: bytes=56 Sequence=3 ttl=126 time=1 ms