Internet & Localnet

Barry Margolin barmar at bbnplanet.com
Fri Oct 1 19:52:08 UTC 1999


In article <14325.1335.619903.486882 at dolphin.mojam.com>,
Skip Montanaro  <skip at mojam.com> wrote:
>
>    Barry> ... 4.2.49.1 and 4.2.49.5 are virtual addresses on the same
>    Barry> machine, but they have different named.conf files --
>    Barry> 4.2.49.1 is a slave server for zones that our customers are
>    Barry> masters for, while 4.2.49.5 is the master server for zones that
>    Barry> we host.
>
>Barry,
>
>Perhaps this has been discussed before, but can you elaborate on why it's
>useful to separate functionality the way you did?

While it's pretty common (and recommended) to have separate authoritative
and caching servers, we may be somewhat unique in also separating master
and slave servers.

I believe we did it this way to give us the freedom to put them on
different boxes if we need to split the load.  We used virtual addresses so
that our customers wouldn't have to change their configurations if we did
this.

Also, it permits us to implement different policies on the servers.  For
instance, if we're master for a domain, we need to allow zone transfers for
it in case the customer wants to run a stealth secondary on their LAN.  But
if we're slave for a domain, we can disable zone transfers, and the
customer can allow zone transfers only to our slave server.  We don't
currently do this, but we may add it later.

-- 
Barry Margolin, barmar at bbnplanet.com
GTE Internetworking, Powered by BBN, Burlington, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.


More information about the bind-users mailing list