  |
||
| ;Relevant INI settings ListenOnIP=192.168.0.2 DNSServerIP=[put a real DNS server here] BlockedIP=192.168.0.2 BlockedKeywordsFile=blocked.txt |
About this type of implementation... The setup described here can be used with DNS Redirector v6.x and prior. With DNS Redirector v7.x you will need to run separate instances for the External and Internal networks, specifying the correct IPs accordingly. The Windows server runs DNS Redirector and the Blocked page off-site from the end-user computers. This may be beneficial for a variety of reasons; to manage the blocked.txt keywords list in one place that multiple sites will benefit from; to save costs by not having to place a server at each location; to prevent tampering by local staff. In this example the Internal IP of the DNS Redirector blocked page is specified in the INI. This is the correct configuration for Cisco PIX/ASA Firewalls when the DNS fixup command is present (and on other Firewalls/Routers that do DNS doctoring). In this scenario DNS Redirector would also work correctly for other end-user machines within the headquarters/datacenter LAN. |
|