Firewall Wizards mailing list archives

Re: Split DNS, who be recursive?

From: Roger Marquis <marquis () roble com>
Date: Thu, 6 Apr 2000 10:38:18 -0700 (PDT)

Lance Spitzner <lance () spitzner net> wrote:

Looking for architect opinions on Split DNS.
How do you configure your Internal DNS server?


Do you mean how do you configure the 2nd DNS daemon?  Where I've set
this up the first instance has a single IP to "listen-on".  The 2nd
daemon will need a different "listen-on" IP, a different "pid-file",
and different "allow-recursion" and "allow-transfer" lists.  You can do
this by using a different filenames for the internal and external
domains:

  %ls /var/named
  named.conf@ -> /etc/named.conf
  named.conf.outside
  db.domain
  db.domain.outside
  db.localhost
  db.127
  db.cache
  nslint

This way queries for internal hosts are answered locally and queries
for external hosts are forwarded to the proper NS.  Be sure to
configure named.conf.outside to only "allow-recursion" for 127.0.0.1.

--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/

Current thread:

Re: Split DNS, who be recursive? Paul D. Robertson (Apr 04)
- Re: Split DNS, who be recursive? Lance Spitzner (Apr 10)
- <Possible follow-ups>
- Re: Split DNS, who be recursive? Don Kendrick (Apr 04)
- Re: Split DNS, who be recursive? aturner (Apr 04)
- Re: Split DNS, who be recursive? Bill_Royds (Apr 10)
- Re: Split DNS, who be recursive? Bennett Todd (Apr 10)
- RE:Split DNS, who be recursive? Jeffery . Gieser (Apr 10)
- RE: Split DNS, who be recursive? Carson, Joe (Apr 10)
- RE: Split DNS, who be recursive? Ben Nagy (Apr 10)
- Re: Split DNS, who be recursive? Chris Brenton (Apr 10)
- Re: Split DNS, who be recursive? Roger Marquis (Apr 10)
- RE:Split DNS, who be recursive? Bill_Royds (Apr 17)