problems in forwarding

Kevin Darcy kcd at chrysler.com
Tue Aug 11 16:16:33 UTC 2009


That's not what SERVFAIL is for.

You need a different architecture. If you want to resolve both internal 
and external names, then you need a version of the zone that has *both* 
sets of names in it. Your architecture should be built around that concept.

                                                                         
                        - Kevin

Luis Silva wrote:
> Regarding question 2, is it possible for the name server to respond 
> servfail and then BIND could contact other servers?
>
>
>  
> On Fri, Aug 7, 2009 at 3:10 PM, Luis Silva <luisfilsilva at gmail.com 
> <mailto:luisfilsilva at gmail.com>> wrote:
>
>
>
>     On Fri, Aug 7, 2009 at 11:03 AM, Matus UHLAR - fantomas
>     <uhlar at fantomas.sk <mailto:uhlar at fantomas.sk>> wrote:
>
>         On 07.08.09 10:50, Luis Silva wrote:
>         > 1 - I need to be a slave for the zones "testing.es
>         <http://testing.es/>" and "testing2.es <http://testing2.es/>" but
>         > everything else must be redirected to the 10.112.15.3
>         server. Do you think
>         > the example bellow is correct? The problem is that everytime
>         I send a
>         > request to the forward zone, my server adds the root
>         nameservers in the
>         > authoritative and additions sections of the message, which i
>         do not think is
>         > correct. Is there a better alternative?
>
>         your server? You apparently did not allow recursion from your
>         IP addresses
>         on it.
>
>      
>     [LS] But the answer section contains the correct information.
>
>
>         > 2 - My second problem is that I have my BIND server
>         forwarding all the
>         > request to a name server, but I wanted to test another
>         server in case of a
>         > negative answer (for example, name error) with the exception
>         of a certain
>         > zone.
>         > For example, I want to send all the requests for "es", but
>         in case of a
>         > negative answer and the zone domain name is not "test.es
>         <http://test.es/>", I want to try
>         > another server. Is that possible?
>
>         you can configure zone "test.es <http://test.es/>" to be
>         forwarded to different server. There
>         is no functionality in BIND that would continue searching for
>         a name when a
>         server responds "the name does not exist".
>         --
>         Matus UHLAR - fantomas, uhlar at fantomas.sk
>         <mailto:uhlar at fantomas.sk> ; http://www.fantomas.sk/
>         Warning: I wish NOT to receive e-mail advertising to this address.
>         Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu
>         postu.
>         You have the right to remain silent. Anything you say will be
>         misquoted,
>         then used against you.
>         _______________________________________________
>         bind-users mailing list
>         bind-users at lists.isc.org <mailto:bind-users at lists.isc.org>
>         https://lists.isc.org/mailman/listinfo/bind-users
>
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users




More information about the bind-users mailing list