Forum Discussion
Vijay_E
Sep 26, 2017Cirrus
There is really no need to have 2 separate WIPs for internal and external DNS requests.
There is one thing that you may want to consider - DNS tends to get DoS'd quite frequently with brute force/flood of requests. Can the firewall in front of the GTM handle flood of traffic ? If the firewall also filters non-DNS traffic for other applications, you can remove the firewall and use a standalone GTM with public IP address in order to prevent other services from going down because of a DNS DoS attack.