Defining 2 Domains on 1 Nameserver

Kevin Darcy kcd at daimlerchrysler.com
Mon Jul 24 23:51:31 UTC 2000 

Your default domain (in /etc/resolv.conf) is "jlic.com", not "ldap.jlic.com". So
when you query "ldapserver1", your resolver appends the default domain and what
it _actually_ asks the nameserver for is "ldapserver1.jlic.com". Unsurprisingly,
this doesn't exist.

My recommendations:
1. use fully-qualified names everywhere, or, failing that,
2. if most of the names for which you want to use short names are in
"ldap.jlic.com", then change your default domain to that (and fully-qualify the
exceptions), or
3. if it's just the one name, create an alias from "ldap.jlic.com" pointing to
"ldapserver1.ldap.jlic.com".

I specifically *discrecommend* using the "search" resolver directive for this.
It's wasteful, slow, non-scalable, can produce confusing results and is just
generally a bad precedent to set.


- Kevin

P.S. With only 1 server in your hints file, you don't have much redundancy, do
you? We have 5 servers, in 4 diverse network locations, which are authoritative
for our internal root zone.

LourdesT at aol.com wrote:

> BACKGROUND:
> I have defined a primary domain, jlic.com, and a subdomain, ldap.jlic.com, on
> the same nameserver.  There is a Cisco DistributedDirector that will load
> balance two ldap servers.  Cisco's DistributedDirector (dd.ldap.jlic.com)
> must be defined as authoritative for the ldap.jlic.com domain.  The
> environment is a private network with no internet connectivity whatsoever.
>
> PROBLEM:
> When I perform nslookup for subdomain, ldap.jlic.com, I can only get
> resolution if I enter "nslookup ldapserver1.ldap.jlic.com", but NOT "nslookup
> ldapserver1".  Can someone please review my files below to see where I went
> wrong.  Thanks.
>
> DATA FILES:
>
> db.jlic file
>
> $TTL 0d
>
> jlic.com. IN SOA dns01.jlic.com. administrator.jlic.com. (
>            20071902 ;Serial
>            3h   ; refresh
>            1h   ; retry
>            1w   ; expire
>            1h ) ; negative caching ttl
> ;
> ;Name servers
> ;
> jlic.com.   IN NS   dns01.jlic.com.
> ldap.jlic.com.  IN NS   dd.ldap.jlic.com.
>
> ;
> ;Canonical Names
> ;
> localhost.jlic.com. IN A    127.0.0.1
> dns01.jlic.com. IN A    10.10.1.43
> dns01.jlic.com. IN A    10.10.1.42
> dd.ldap.jlic.com.   IN A    10.10.1.51
>
> _____________________________
>
> db.ldap file
>
> $TTL 0d
>
> ldap.jlic.com.  IN SOA dd.ldap.jlic.com. administrator.ldap.jlic.com. (
>            20071902 ;Serial
>            3h   ; refresh
>            1h   ; retry
>            1w   ; expire
>            1h ) ; negative caching ttl
> ;Name servers
> ;
> ldap.jlic.com.  IN NS   dd.ldap.jlic.com.
> jlic.com.   IN NS   dns01.jlic.com.
> ;
> dd.ldap.jlic.com.   IN A    10.10.1.51
> ;Canonical Names
> ;
> ;localhost.ldap.jlic.com.   IN A    127.0.0.1
> ;
> ;LDAP Servers
> ;
> ldapserver1.ldap.jlic.com.  IN A    10.10.0.37  ;ldap server lead dnet2 at
> toco hills
> ldapserver2.ldap.jlic.com.  IN A    10.10.0.69  ;ldap server lead dnet6 at
> toco hills
>
> _____________________________
>
> db.127.0.0 file
>
> $TTL 0d
> 0.0.127.in-addr.arpa. IN SOA dns01.jlic.com. administrator.jlic.com. (
>   20071902 ; Serial
>   3h    ; refresh after 3 hours
>   1h    ; retry after 1 hour
>   1w    ; expire
>   1h ) ; negative caching ttl
> 0.0.127.in-addr.arpa.   IN NS   dns01.jlic.com.
> 0.0.127.in-addr.arpa.   IN NS   dd.ldap.jlic.com.
> 1.0.0.127.in-addr.arpa. IN PTR localhost.
>
> _____________________________
>
> Db.10.10.1
>
> $TTL 0d
> 1.10.10.in-addr.arpa.   IN SOA  dns01.jlic.com. administrator.jlic.com (
>   20071902  ; Serial
>   3h    ; Refresh
>   1h    ; Retry
>   1w    ; expire
>   1h ) ; negative caching ttl
> ;
> ;Name Servers
> 1.10.10.in-addr.arpa.   IN NS   dns01.jlic.com.
> 1.10.10.in-addr.arpa.   IN NS   dd.ldap.jlic.com.
> ;
> ;Addresses point to canonical name
> ;
> 51.1.10.10.in-addr.arpa.    IN PTR  dd.ldap.jlic.com.
> 43.1.10.10.in-addr.arpa.    IN PTR  dns01.jlic.com.
> 42.1.10.10.in-addr.arpa.    IN PTR  dns01.jlic.com.
>
> _____________________________
>
> named.conf file
>
> logging {
>   channel my_syslog {
>      syslog daemon;
>      severity info;
>   };
>   channel my_file {
>      file "log.msgs" ;
>   };
>
>   category statistics {my_syslog; my_file; };
>   category queries { my_file; } ;
> };
> options {
>  directory "/var/named";
> };
> zone "jlic.com" {
>  type master;
>  file "db.jlic";
> };
> zone "ldap.jlic.com" {
>   type master;
>   file "db.ldap";
> };
> zone "1.10.10.in-addr.arpa" {
>  type master;
>  file "db.10.10.1";
> };
> zone "0.0.127.in-addr.arpa" {
>  type master;
>  file "db.127.0.0";
> };
> zone "." {
>  type hint;
>  file "db.cache";
> };
>
> _____________________________
>
> resolv.conf file
>
> nameserver 10.10.1.43
> nameserver 127.0.0.1
> domain jlic.com
>
> _____________________________
>
> ; db.cache file
> .   999999      IN  NS  dns01.jlic.com.
> ;
> dns01.jlic.com. 999999  IN  A   10.10.1.43

More information about the bind-users mailing list