Forwarding will not work
Barry Margolin
barmar at alum.mit.edu
Fri May 12 04:31:10 UTC 2006
In article <e3viu1$2b21$1 at sf1.isc.org>,
"Tom Schmitt" <TomSchmitt at gmx.de> wrote:
> Hi,
>
> I use Bind 9.3.2 in our intranet and have a delegation for a foreign domain
> to a dns-server in a intranet of another company. This works well for me.
> But because there is a firewall between our companies, only accessable for
> my DNS-Server, all other DNS-Server in my company have a problem when they
> ask for a name in the foreign domain: My DNS-Server is telling them the IP
> of the authorative DNS-Server of the other comany and they can't reach him
> because of the firewall.
>
> So the solution is simple (I thought): Instead of a delegation, I would make
> a forwarding for this zone.
>
> I added
> >
> > zone "foreigndomain.othercompany.com" {
> > type forward;
> > forwarders { 10.1.2.3; 10.0.1.2; };
> > forward only;
> > };
> >
> and reloaded my config with "rndc reconfig".
> There was no errormessage in any Logfile, but when I tested the
> configuration, I recognized: There is no forwarding, it is still working as
> a delegation!
>
> What is my mistake? Is there a magic option to activate forwarding, which I
> missed in the documentation? Or did I get the hole "forwarding"-idea wrong?
The other servers are not sending recursive queries. Since forwarding
is a type of recursion, it doesn't help in this case.
Instead of forwarding, make your server a slave for the foreign domain.
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
*** PLEASE don't copy me on replies, I'll read them in the group ***
More information about the bind-users
mailing list