Hi all. I am going to be running a DNS server that will be given authority over a specific zone (ex: for the sports.whatever.edu zone). Requests will be recieved by the whatever.edu DNS servers and forwarded to my DNS server, which will point the request to a target machine. I want to secure my linux distro with IPTables. My question is: Can I lock down the entire machine and close it off to all packets but those coming from the whatever.edu DNS servers, or do I have to open it up to outside connections of those trying to find the sports.whatever.edu target?

Sounds like it should be possible ,,, (namely ) with a sub DNS server set up with NAT , for an INTRANET , website, being used as a caching server, ,,, Not impossible !!! Will take quite a lot of configuring and the Learning curve would be quite steep, Using Bind, and having a LAMP server set up along with the editing and Ip, and subdomain names From the sounds of it though the requests and response times are going to be increased because of all the forwarding, and hops needed to process the requests, Latency will be high, Seems like a complicated set-up ,,,, Good luck huh,, !!! MSI 845e mb 1 gb ram and a p4 2.4n running fedora 7 xp ,win 2000 advanced server and win 98 SE alot to learn and I know so little !!!!