hi,
i have setup a testbed such as this:
internet
|
intranet
/ | \
(proxy) | (intranet name server)
|
| (eth0)
testbed proxy/name server/web
| (eth1)
/ \
test clients
my testbed server is running squid, web and name service for the testbed
network. its parent proxy is the proxy server in the intranet. however,
the intranet name server do not know about the testbed domain.
the test clients could access (http) the intranet sites as well as
internet sites. however, it could not access the testbed server via its
hostname. accessing it through the eth0-IP is ok, though.
what i wanted to do is for the test clients to directly connect to the
testbed server if i wanted to see the testbed pages residing in the
server. for all other stuff, requests shld be forwarded to the parent
proxy.
i have the following acl:
acl INSIDE dstdomain testbed.com
never_direct deny INSIDE
always_direct allow INSIDE
never_direct allow !INSIDE
i have also added the ff entry:
dns_nameservers eth0-IP eth1-IP
having done all these, i still get a DNS lookup failure when i try to
access the server.testbed.com from any of the testbed clients. and the
error message seems to be posted by the intranet proxy.
your assitance will be highly appreciated.
regards,
-nenita
Received on Wed Jun 21 2000 - 02:08:55 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:54:06 MST