Internal/External DNS question

Kevin Darcy kcd at daimlerchrysler.com
Thu Aug 9 21:12:56 UTC 2001


Kevin Darcy wrote:

> jmarin at pyy.jmp.fi wrote:
>
> > In article <9kpsh7$19k at pub3.rc.vix.com>, glen herrmannsfeldt wrote:
> >
> > >Some people like having a subdomain, though I prefer not.  It gets
> > >people too confused that machines have a different name inside and
> > >out.
> >
> > I feel the same way.
> >
> > >It is your choice.  If you configure them with the same name,
> > >use forwarders from the inside to the outside, so the inside server
> > >will ask the outside server for any name it doesn't know.
> >
> > This does not work.  I wish it did, but it doesn't.  Both the internal and
> > external server believe they are the authoritative one and they never
> > forward queries about their own domain.
>
> That's the way it is supposed to work. If you have names which need to be
> resolvable internally and externally, then you must maintain them in
> *both* versions of the zone.
>
> > I would like to set up two servers (you can even run them on a single
> > machine if you like).
>
> With BIND 9, you could even run multiple "view"s in a single nameserver
> instance.

I almost forgot: one possible trick to reduce maintenance is to have an
$INCLUDE file containing the common entries in both the internal and external
versions of the zone.


- Kevin





More information about the bind-users mailing list