Cisco Cisco ASA 5510 Adaptive Security Appliance 문제 해결 가이드
DNS Doctoring on ASA Configuration Example
Document ID: 115753
Contributed by Rama Darbha, Cisco TAC Engineer.
Mar 05, 2013
Mar 05, 2013
Contents
Introduction
Prerequisites
Requirements
Components Used
Conventions
DNS Doctoring Examples
DNS Server on the Inside of ASA
DNS Server on the Outside of the ASA
VPN NAT and DNS Doctoring
Related Information
Prerequisites
Requirements
Components Used
Conventions
DNS Doctoring Examples
DNS Server on the Inside of ASA
DNS Server on the Outside of the ASA
VPN NAT and DNS Doctoring
Related Information
Introduction
This document shows how DNS Doctoring is used on the Adaptive Security Appliance (ASA) to change the
embedded IP addresses in Domain Name System (DNS) responses so that clients can connect to the correct IP
address of servers.
embedded IP addresses in Domain Name System (DNS) responses so that clients can connect to the correct IP
address of servers.
Prerequisites
Requirements
DNS Doctoring requires configuration of Network Address Translation (NAT) on the ASA, as well as
enablement of the DNS inspection.
enablement of the DNS inspection.
Components Used
The information in this document is based on the Adaptive Security Appliance.
The information in this document was created from the devices in a specific lab environment. All of the
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.
Conventions
Refer to Cisco Technical Tips Conventions for more information on document conventions.
DNS Doctoring Examples
DNS Server on the Inside of ASA
Figure 1