A typical DNS server has the primary function of translating computer names into IP addresses. This information can provide just enough data to a hacker to spoof a target system. The dilemma in dealing with the Internet is that IP address information, coupled with domain name resolution, is fundamental for communication. The only viable solution is to maintain discrete DNS servers for external and internal name and IP address resolution. The external DNS server needs to be accessible only to queries about public network data. The internal system needs to be firewall protected and retain all IP address information of the secured environment.
|
|
|
|
|
|
|
|