How to Resolve external names without timeout on reverse lookups

Kevin Darcy kcd at daimlerchrysler.com
Wed Dec 19 20:46:44 UTC 2001


No. A BIND nameserver never forwards queries in zones for which it is
authoritative.


- Kevin

Sommariva Graziano wrote:

> Would a forward option on my internal root servers work?
>
> Best Regards,
>
> Graziano
>
> -----Original Message-----
> From: Barry Margolin [mailto:barmar at genuity.net]
> Sent: Wednesday, December 19, 2001 4:21 PM
> To: comp-protocols-dns-bind at moderators.isc.org
> Subject: Re: How to Resolve external names without timeout on reverse
> lookups
>
> In article <9vpt63$jpn at pub3.rc.vix.com>,
> Sommariva Graziano  <Graziano.Sommariva at elsag.it> wrote:
> >For historical and histerical reasons we have many IP classes in the
> >internal network that are in the External ip range.
> >
> >If I instruct internal ROOT DNS servers to forward to external DNS server
> to
> >resolve the "REST of the world" I risk to get many timeouts whenever an
> >INTENAL" host belonging to public "IP-Range" telnets to a host requesting
> >the reverse ip address.
> >
> >I though to declare  my internal root-DNS servers as primary all possiblie
> >in-arpa zones present on my network.
>
> That's probably the best solution.  Any address ranges you're using
> internally should have reverse DNS zones on your internal DNS servers.
>
> --
> Barry Margolin, barmar at genuity.net
> Genuity, Woburn, MA
> *** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
> Please DON'T copy followups to me -- I'll assume it wasn't posted to the
> group.



More information about the bind-users mailing list