Questions about my special DNS setting

dev_null dev_null at pubbox.net
Mon Dec 11 06:02:27 UTC 2006


Hello members,
I have a question about my DNS setting.

My company has the public domain,given the domain name is foo.com
Certainly this domain has the public authority DNS.
Now I want to set the private DNS,for example,such a host it has the A record in authority DNS:

aaa.foo.com.            325     IN      A       125.90.100.xxx

When in local network,I want to set this host to be resolved to a private network ip addr,like:

aaa.foo.com.            325     IN      A       192.168.0.10

So I create this config file:

zone "foo.com" in {
        type master;
        file "db.foo.com";
};

And in db.foo.com, I wrote:

$TTL 3h
@ IN SOA dns-cache.foo.com. host.foo.com. (
                          1        ; Serial
                          3h       ; Refresh after 3 hours
                          1h       ; Retry after 1 hour
                          1w       ; Expire after 1 week
                          1h )     ; Negative caching TTL of 1 hour

foo.com.         IN NS  dns-cache.foo.com.
aaa             IN A    192.168.0.10

This works fine.When I 'ping aaa.foo.com', I got the responce from '192.168.0.10'.


The problems for me are,since I don't add all the records in public authority DNS's zone file to local DNS zone,some resolving become lost.For example,there is an A record in public authority DNS:

mail.foo.com      325     IN      A       125.90.100.yyy

But this A record don't appear in my private DNS.When using the private DNS and 'ping mail.foo.com',I got nothing.


Is there any way to resolve my problems? I hope that,for some a request,if there is no records in the private DNS,it should be forwarded to the public authority DNS.Can this be done by 'dns forward'? Thanks in advances.

--DaveFrom spoo at isc.org  Mon Dec 11 10:08:12 2006
Received: with ECARTIS (v1.0.0; list bind-users); Mon, 11 Dec 2006 10:08:12 +0000 (UTC)
Return-Path: <spoo at isc.org>
X-Original-To: bind-users at webster.isc.org
Received: from farside.isc.org (farside.isc.org [IPv6:2001:4f8:3:bb::5])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client CN "farside.isc.org", Issuer "ISC CA" (verified OK))
	by webster.isc.org (Postfix) with ESMTP id 8AF1510E418
	for <bind-users at webster.isc.org>; Mon, 11 Dec 2006 10:08:12 +0000 (UTC)
	(envelope-from spoo at isc.org)
Received: by farside.isc.org (Postfix, from userid 107)
	id 7398AE60B2; Mon, 11 Dec 2006 10:08:12 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 3.1.7 (2006-10-05) on farside.isc.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.8 required=5.0 tests=AWL,BAYES_00 autolearn=ham 
	version=3.1.7
X-Original-To: spoo at farside.isc.org
Received: from mx.isc.org (mx.isc.org [IPv6:2001:4f8:0:2::1c])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client CN "mx.isc.org", Issuer "ISC CA" (verified OK))
	by farside.isc.org (Postfix) with ESMTP id 9CA1DE60A0
	for <spoo at farside.isc.org>; Mon, 11 Dec 2006 10:08:05 +0000 (UTC)
	(envelope-from bortzmeyer at nic.fr)
Received: from mx2.nic.fr (mx2.nic.fr [192.134.4.11])
	by mx.isc.org (Postfix) with ESMTP id 0C33F114025
	for <bind-users at isc.org>; Mon, 11 Dec 2006 10:08:04 +0000 (UTC)
	(envelope-from bortzmeyer at nic.fr)
Received: from localhost (localhost.localdomain [127.0.0.1])
	by mx2.nic.fr (Postfix) with ESMTP
	id BAD2926C365; Mon, 11 Dec 2006 11:08:03 +0100 (CET)
X-Virus-Scanned: by amavisd-new at mx2.nic.fr
Received: from relay2.nic.fr (relay2.nic.fr [192.134.4.163])
	by mx2.nic.fr (Postfix) with ESMTP
	id 3925426C33B; Mon, 11 Dec 2006 11:08:03 +0100 (CET)
Received: from bortzmeyer.nic.fr (batilda.nic.fr [192.134.4.69])
	by relay2.nic.fr (Postfix) with ESMTP id 2C01058ED2B;
	Mon, 11 Dec 2006 11:08:03 +0100 (CET)
Date: Mon, 11 Dec 2006 11:08:03 +0100
From: Stephane Bortzmeyer <bortzmeyer at nic.fr>
To: Roland Zoder <rz at razfazz.at>
Cc: bind-users at isc.org
Subject: Re: Changing output of bind
Message-ID: <20061211100803.GA15940 at nic.fr>
References: <457C58EF.2090307 at razfazz.at>
MIME-Version: 1.0
Content-type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <457C58EF.2090307 at razfazz.at>
X-Operating-System: Debian GNU/Linux 4.0
X-Kernel: Linux 2.6.17-2-686 i686
Organization: NIC France
X-URL: http://www.nic.fr/
User-Agent: Mutt/1.5.13 (2006-08-11)
Content-Transfer-Encoding: 8bit
Sender: bind-users-bounce at isc.org
Errors-to: bind-users-bounce at isc.org
Precedence: bulk
List-unsubscribe: <mailto:bind-users-request at isc.org?Subject=unsubscribe>
List-Id: <bind-users.isc.org>
X-List-ID: <bind-users.isc.org>

On Sun, Dec 10, 2006 at 07:58:55PM +0100,
 Roland Zoder <rz at razfazz.at> wrote 
 a message of 36 lines which said:

> For internal reasons I need to change the output of named.

You certainly cannot: named produces replies in standard DNS wire
format (RFC 1035) and you cannot change it or standard DNS clients
(such as dig or any resolver) will not be able to use it.

You can change dig's output format if this is what you want. 



More information about the bind-users mailing list