DNS & Mail in the DMZ

Firewall Architectures

Screening Router Architecture

Screened Subnet Architecture

DNS
(Domain Name Service)

Goals

Internal BIND Configuration

DMZ BIND Configuration

Running BIND as Non-root User

Running BIND in chroot

Running BIND in chroot, cont.

ndc

Complications

Complications, cont.

Complications, cont.

Mail

Goals

Internal Sendmail Configuration

Internal Sendmail Config, cont.

DMZ Sendmail Configuration

DMZ Sendmail Config, cont.

Running Sendmail as Non-root User

References