beautypg.com

Configuration of network services, Dns module, Chapter 8 – Kerio Tech KERIO WINROUTE FIREWALL 6 User Manual

Page 104: 1 dns module

background image

104

Chapter 8

Configuration of network services

This chapter provides guidelines for setting of basic services in WinRoute helpful for easy

configuration and smooth access to the Internet:

DNS module — this service is used as a simple DNS server for the LAN,

DHCP server — provides fully automated configuration of LAN hosts,

DDNS client — provides automatic update of firewall logs in public dynamic DNS,

Proxy server — enables access to the Internet for clients which cannot or do not want

to use the option of direct access,

HTTP cache — this service accelerates access to repeatedly visited web pages (for

direct connections with proxy server).

8.1 DNS module

In WinRoute, the DNS Forwarder module can be used to enable easier configuration for DNS

hosts within local networks or to speed up responses to repeated DNS queries. At local hosts,

DNS can be defined by taking the following actions:

use IP address of the primary or the back-up DNS server. This solution has the risk

of slow DNS responses. All requests from each computer in the local network will be

sent to the Internet.

use the DNS server within the local network (if available). The DNS server must be

allowed to access the Internet in order to be able to respond even to queries sent from

outside of the local domain.

use the DNS module in WinRoute. It can be also used as a basic DNS server for the

local domain or/and as a forwarder for the existing server.

If possible, it is recommended to use the DNS module as a primary DNS server for LAN hosts

(the last option). The DNS module provides fast processing of DNS requests and their correct

routing in more complex network configurations. The DNS module can answer directly to

repeated requests and to requests for local DNS names, without the need of contacting DNS

servers in the Internet.

If the DNS module cannot answer any DNS request on its own, it can forward it to a DNS server

set for the Internet link through which the request is sent. For details addressing configuration

of the firewall’s network interfaces, see chapter

5

, more information on Internet connection

options, refer to chapter

6

.