Forwarding zones not working

Josh Richard jrichar4 at d.umn.edu
Thu Aug 13 13:41:25 UTC 2009


Hello bind-users,

bind 9.3.4, Debian

goal:
resolve any.dns.name -> 1.2.3.4, unless queries are for zones specified
in sites.conf.  In the latter case, forward to a trustworthy name
server.

=== named.conf ===

include "/etc/bind/sites.conf";

zone "." {
        type master;
        file "/etc/bind/db.root";
};

=== db.root ===

$TTL 3h
. IN SOA reg.  root.reg. (
                     7       ; Serial
                     3h      ; Refresh
                     1h      ; Retry after 1 hour
                     1w      ; Expire after 1 week
                     1h )    ; Negative Caching TTL
. IN NS reg.

*       86400   IN      A       1.2.3.4

=== sites.conf zone example ===
zone "foo.com" in
{
 type forward;
 forward first;
 forwarders { 10.10.10.10; };
};


=== what happens:

dns lookups for anything resolve to 1.2.3.4 as specified in db.root
(even foo.com).   The more specific matches returned by the forwarder in
the sites file are never consulted.

If I change 'type master' to 'type hint' in the named.conf file, the
sites file is consulted and the results are accurate, but the general
case does not (anything -> 1.2.3.4).

Seems like what I have done should work.  I am concerned the wildcard
'*' is the issue -- the forwarders should be consulted as the match is
more specific correct?

Any ideas are greatly appreciated.

Regards,

Josh Richard


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20090813/f760704d/attachment.bin>


More information about the bind-users mailing list