Servus Community,
we cooperate with a machine manufacturer who provides remote access to our machines. This is for diagnostic purposes, software updates and assistance. For some time now, the machine manufacturer has outsourced its resources to the Amazon Cloud and provided us with a whole set of FQDNs that have to be unblocked in the firewall.
We created a network object with the type Hostnme (DNS Resolved) for each FQDN and added it to the corresponding firewall rule. The DNS livetime is 600 seconds but now the load balancer of Amazon changes the IP address constantly and in principle I would have to use a livetime of one second. However, I would like to prevent this. Therefore two questions:
- Up to what time span can I go down here without letting the load on the firewall and our DNS servers get too high? 300 seconds, 60 seconds, 5...
