hey guys,
has anyone installed SPLIT-DNS on their ISR 2800/2900's? Did you come into any issues with it not functioning properly?
A bit off topic perhaps, but I would *never* run DNS on a Cisco router. Whatever the plan, there has to be a better design.
Lolz... and Cisco bought OpenDNS.
which is exactly why we need to use split DNS.
We have PBR with external IP going out cable connection. The issue is the internal hosts are pointing to internal DNS servers. So when they go to playboy.com it queries internal DNS and then sends the traffic out the cable connection unfiltered.
yeah.. thats an issue.
So this is why we need split-dns on the router. send external to OpenDNS. Send internal to internal DNS.
Quote from: LynK on March 03, 2016, 08:33:38 AM
which is exactly why we need to use split DNS.
We have PBR with external IP going out cable connection. The issue is the internal hosts are pointing to internal DNS servers. So when they go to playboy.com it queries internal DNS and then sends the traffic out the cable connection unfiltered.
yeah.. thats an issue.
So this is why we need split-dns on the router. send external to OpenDNS. Send internal to internal DNS.
.
I'm not following. So you have an internal DNS server, and it does look-ups external. So just configure that internal DNS to send requests to OpenDNS.
-Otanx
no bueno. haha because we use the same internal DNS servers here at HQ.
it is kind of confusing. If anyone needs a decent PBR/split-dns solution down the road hit me up.