Looking for way to mark a zone no-xfer for a sub-domain .

Georgi Sinapov georgi.sinapov at gramma.net
Thu Aug 31 18:49:36 UTC 2000 

Hi James,
Here is my idea.
You have got Internet DNS server for domain baby-dragons.com. When you
create delegation for private subdomain there you do not have to
maintain two copies for your domain. Yes you have got a private IP
address in A RR, but that server is behind your firewall and (hopefully)
no one but internal machines can access it.=20


Best regards,
Georgi Sinapov


-----Original Message-----
From: Mr. James W. Laferriere [mailto:babydr at baby-dragons.com]
Sent: 31 ?????? 2000 20:45
To: Georgi Sinapov
Cc: Jim Reid; bind-users at isc.org
Subject: RE: Looking for way to mark a zone no-xfer for a sub-domain .=20



	Hello Georgi ,  If I can reach that one to do a named-xfer or
	query , shame on you .  Its IP is in the infamous rfc1918 space
	and should not be world reachable .  I am hoping that I can not
	reach it (as I have not tried, Yet) .  How about a quick summary
	of the process that you went thru to get this done ?  Tia,  JimL
ps:	Well at least it doesn't ping from here .

On Thu, 31 Aug 2000, Georgi Sinapov wrote:
> Jim,
> Please try to lookup one of my internal DNS servers for example try
with
> 192.168.225.33
> It will be very interesting for me what would be the result:)))
>=20
> Best regards,
> Georgi Sinapov
>=20
>=20
> -----Original Message-----
> From: Jim Reid [mailto:jim at rfc1035.com]
> Sent: 31 ?????? 2000 11:56
> To: Georgi Sinapov
> Cc: bind-users at isc.org
> Subject: Re: Looking for way to mark a zone no-xfer for a sub-domain
.=3D20
>=20
>=20
> >>>>> "Georgi" =3D3D=3D3D Georgi Sinapov <georgi.sinapov at gramma.net>
writes:
>=20
>     Georgi> You could make a subdomain delegation in you Internet DNS
>     Georgi> zone file for baby-dragons.com.
>=20
> What you say is true, but it doesn't answer the original poster's
> question. Delegating the subdomain will work, but the delegation point
> will be visible in the DNS. So the rest of the world will be able to
> find sub.baby-dragons.com and lookup names in that zone/domain. Which
> is what the original poster doesn't want.
>=20
>=20

=20
+----------------------------------------------------------------+
       | James   W.   Laferriere | System  Techniques | Give me VMS
|
       | Network        Engineer | 25416      22nd So |  Give me Linux
|
       | babydr at baby-dragons.com | DesMoines WA 98198 |   only  on  AXP
|
=20
+----------------------------------------------------------------+

More information about the bind-users mailing list