Using the Split DNS option

You can configure Content Gateway to use multiple DNS servers, depending on your security requirements. For example, you can configure Content Gateway to look to one set of DNS servers to resolve host names on your internal network, while allowing DNS servers outside the firewall to resolve hosts on the Internet. This maintains the security of your intranet, while continuing to provide direct access to sites outside your organization.

To configure Split DNS, you must perform the following tasks:

  • Specify the rules for performing DNS server selection based on the destination domain, the destination host, or a URL regular expression.
  • Enable the Split DNS option.

In the Content Gateway manager:

Steps

  1. Go to the Configure > Networking > DNS Resolver > Split DNS tab.
  2. Enable the Split DNS option.
  3. In the Default Domain field, enter the default domain for split DNS requests. Content Gateway appends this value automatically to a host name that does not include a domain before determining which DNS server to use.
  4. In the DNS Servers Specification area, click Edit File to open the configuration file editor for the splitdns.config file.
  5. Enter information in the fields provided, and then click Add. All the fields are described in splitdns.config.
  6. Click Apply, and then click Close.
  7. On the Split DNS tab, click Apply to save your configuration.
  8. Click Restart on Configure > My Proxy > Basic > General.