BIND 8 forwarding question
Lemman, Paul
paul_lemman at mentorg.com
Wed Oct 10 14:08:02 UTC 2001
Cricket,
Yes, I'm sure that we run internal root servers. What kind of indications were you looking for?
paul
paul lemman V: 503.685.1554
IT Computer Services www.mentor.com
Mentor Graphics Corporation
-----Original Message-----
From: Cricket Liu [mailto:cricket at menandmice.com]
Sent: Monday, October 08, 2001 4:10 PM
To: Lemman, Paul; bind-users at isc.org
Subject: Re: BIND 8 forwarding question
> I'd thought about just making the mentorg.com zone declaration a stub zone
as you suggest.
> The problem is that the site is connected to our internal roots via a VPN.
If the VPN goes
> down, I don't want the forwarder to then ask the Internet roots which
winds up pulling data
> from our external view (we run a split horizon DNS) servers. These
machines will return
> some RNAT addresses which would then be cached when the VPN comes back up
and
> cause problems.
As long as the local name server has the NS RRs for mentorg.com cached, it
won't query
the root name servers for domain names that end in mentorg.com.
> It sounds like what you're suggesting would work since even if the VPN
goes down, the
> forwarder would just be unable to talk to the internal root nameservers
and return a failure.
Are you sure you have internal root name servers? Not just internal
mentorg.com name
servers? Because there's no indication that this name server is part of an
internal root
environment at all.
cricket
Men & Mice
DNS Software & Services
www.menandmice.com
More information about the bind-users
mailing list