How to redirect unofficial TLD queries with BIND9 ?

David Botham dns at botham.net
Mon Sep 30 19:49:57 UTC 2002 



> -----Original Message-----
> From: bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org] On
> Behalf Of Jim Smith
> Sent: Thursday, September 26, 2002 6:12 PM
> To: comp-protocols-dns-bind at isc.org
> Subject: How to redirect unofficial TLD queries with BIND9 ?
> 
> 
> Shortly:
> W2k client makes a query of unofficial TLD (dig srv1.intra.)
> to its dns server, which is BIND9. I want to say to my BIND9 that
> don't ask from forwaders or root-servers, instead of that say to
> client: "please send your query to another DNS, the root of intra.
> 
> Situation:
> I want to use own unofficial TLD for W2k AD domainname.
> How can I configure BIND9 so that it redirects all queries and updates
> about that unregistered "intra" domain to the primary dns server of
that ?
> Currently my BIND forwards those queries to our ISP, when I try "dig
> srv1.intra".

Jim,

Yes.  On your "BIND9" server, add zone of type forward for intra.

See the ARM, zone specification.

Dave...



> 
> My testing machines are:
> 192.168.1.1     ux1.company.com.    #Unix BIND9
> 192.168.1.101   srv1.intra.         #W2k AD, DDNS, DHCP
> 192.168.1.102   win1.intra.         #W2k Pro, DHCP-client, dynamic
update
> 
> Background:
> I just want to keep all win* machines in their own sandbox
> and don't want them to allow dynamic update to BIND. Rather
> I want them to see that the primary of "intra" can be found
> on 192.168.1.101 and dynamic updates should be sent to there.
> I don't want to use our company name in domainname of AD
> ie. don't want use intra.company.com, because someone may
> want to rename our company and then i dont want new hassle
> with w-boxes.
> 
> It would be simplier for me and others to let users keep
> their current dns ip's in all win and *nix machines. But
> if there is no solution, I have to ask them to change dns
> ip to 192.168.1.101 on all (non critical) win* machines.
> 
> -- BTW, i think dns ip's should be same forever and
>    i don't like the situation where Bill drives us:
>    you should change your dns ip's or you should
>    code your company name to ad and you can't then
>    change your company name ever or... hassle,hassle,...
> 
> Best Regards
> /Jim

More information about the bind-users mailing list