Stopping Open DNS - FireBrick 2700: Difference between revisions
No edit summary |
No edit summary |
||
| Line 6: | Line 6: | ||
[[File:Fb2700-dns.png|600px]] |
[[File:Fb2700-dns.png|600px]] |
||
==Testing Access== |
|||
The web interface of the FireBrick can list what services are open, go to |
|||
Diagnostics - Access Check |
|||
Enter an Source IP of an IP on the Internet. |
|||
The FireBrick will then list all the services open to that IP address, eg: |
|||
DNS resolver access:- |
|||
This address is not on a local Ethernet subnet and so not allowed access. |
|||
Revision as of 12:05, 18 Haziran 2013
On a FireBrick 2700 the DNS service defaults to local-only - this prevents access to the FireBrick DNS resolver from the WAN by default.
The setting for this is found
Config - Edit - Setup - General system services - DNS service settings - local-only
Testing Access
The web interface of the FireBrick can list what services are open, go to
Diagnostics - Access Check
Enter an Source IP of an IP on the Internet.
The FireBrick will then list all the services open to that IP address, eg:
DNS resolver access:- This address is not on a local Ethernet subnet and so not allowed access.