BIND 8 forwarding question
paul_lemman at mentorg.com
Wed Oct 10 14:08:02 UTC 2001
Yes, I'm sure that we run internal root servers. What kind of indications were you looking for?
paul lemman V: 503.685.1554
IT Computer Services www.mentor.com
Mentor Graphics Corporation
From: Cricket Liu [mailto:cricket at menandmice.com]
Sent: Monday, October 08, 2001 4:10 PM
To: Lemman, Paul; bind-users at isc.org
Subject: Re: BIND 8 forwarding question
> I'd thought about just making the mentorg.com zone declaration a stub zone
as you suggest.
> The problem is that the site is connected to our internal roots via a VPN.
If the VPN goes
> down, I don't want the forwarder to then ask the Internet roots which
winds up pulling data
> from our external view (we run a split horizon DNS) servers. These
machines will return
> some RNAT addresses which would then be cached when the VPN comes back up
> cause problems.
As long as the local name server has the NS RRs for mentorg.com cached, it
the root name servers for domain names that end in mentorg.com.
> It sounds like what you're suggesting would work since even if the VPN
goes down, the
> forwarder would just be unable to talk to the internal root nameservers
and return a failure.
Are you sure you have internal root name servers? Not just internal
servers? Because there's no indication that this name server is part of an
environment at all.
Men & Mice
DNS Software & Services
More information about the bind-users