Screen OS

last person joined: 8 months ago 

This is a legacy community with limited Juniper monitoring.

  • 1.  DNS

    Posted 09-07-2012 20:05

    Hi all,

     

    I have scenario in below:

     

    I have ssg as gateway network, then have 2 zones Untrust and trust

    IP interface for trust 192.168.1.1/24

    IP interface for untrust 222.222.222.123/30

     

     

    I want user on trust use DNS from ssg :192.168.1.1 for internet

    but, I try to configure on ssg use ip 8.8.8.8 it's can not working

    so, I use IP 8.8.8.8 for internet from user



  • 2.  RE: DNS

    Posted 09-08-2012 01:14

    I am not quite sure what you mean but if you're trying to use SSG as a DNS-server, that is not possible.

     

    To configure what nameservers uses SSG itself for name resolution:

    set dns host dns1 8.8.8.8 src-interface <untrust-interface>

     

    To configure nameservers which are offered with dhcp-lease to client in trust interface:

    set interface <trust interface> dhcp server options dns dns1 192.168.1.X

    set interface <trust interface> dhcp server options dns dns2 192.168.1.X

     



  • 3.  RE: DNS
    Best Answer

    Posted 09-09-2012 14:34

    Sure, but you need to configure a proxy dns (Network -> dns -> proxy) and enable proxy dns on the trust interface if you want to use the ssg as a dns proxy.



  • 4.  RE: DNS

    Posted 09-09-2012 18:50

    Hi ,

     

    Thanks for your help

    I will to try it

     

    Reagrds,

     

    Feri