Split View DNS

Christopher Howard Christopher-Howard at utc.edu
Thu Mar 11 15:16:27 UTC 2010 

I tried this and noticed that the first view will IXFR the file from the
master, then the second view will try to IXFR and fail because the file
has already been updated.  Then the second view does a complete AXFR.  I
ended up with errors in the log file.  With busy DDNS zones the errors
were very plentiful.

I found it best to just have separate files for each view even if they
have the same information in them.  It works either way, just a personal
preference I guess.

-Christopher

-----Original Message-----
From: bind-users-bounces+christopher-howard=utc.edu at lists.isc.org
[mailto:bind-users-bounces+christopher-howard=utc.edu at lists.isc.org] On
Behalf Of Todd Snyder
Sent: Thursday, March 11, 2010 10:10 AM
To: Jason Gates; bind-users at lists.isc.org
Subject: RE: Split View DNS

Yes, assuming you want them to both have the same zone data.

We use a naming convention so we know when we're sharing a file.  Each
view gets their zonefiles with "-viewname" (ie: example.com-internal)
appended.  Common zones get "-common".  This keeps us from modifying the
wrong file, and lets us remember which ones are shared easily.

Todd.

-----Original Message-----
From: bind-users-bounces+tsnyder=rim.com at lists.isc.org
[mailto:bind-users-bounces+tsnyder=rim.com at lists.isc.org] On Behalf Of
Jason Gates
Sent: Thursday, March 11, 2010 10:06 AM
To: bind-users at lists.isc.org
Subject: Split View DNS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

When using split view, can one point to the same file in both views?
example:

view "blah-internal" {

match-clients { internal-users; };
zone "blah.org" in {
type slave;
file "/var/named/slave/blah.org";
masters { ipaddress; };
};

zone "10.10.10.in-addr.arpa" in {
type slave;
file "/var/named/slave/10.10.10.reverse";
masters { ipaddress; };
};

};


view "blah-external" {

match-clients { any; };
zone "blah.org" in {
type slave;
file "/var/named/slave/blah.org";
masters { ipaddress; };
};

zone "10.10.10.in-addr.arpa" in {
type master;
file "/var/named/view/10.10.10.reverse";
};

};
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.14 (Darwin)

iEYEARECAAYFAkuZBtkACgkQ3BaZWzk6Q2cm6wCgt8/qogkzaM4SosMpS9o+PT9k
qugAoIwHOmvsZyrHDfbZEDsY1Rp1/tFZ
=aL9s
-----END PGP SIGNATURE-----
_______________________________________________
bind-users mailing list
bind-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

---------------------------------------------------------------------
This transmission (including any attachments) may contain confidential
information, privileged material (including material protected by the
solicitor-client or other applicable privileges), or constitute
non-public information. Any use of this information by anyone other than
the intended recipient is prohibited. If you have received this
transmission in error, please immediately reply to the sender and delete
this information from your system. Use, dissemination, distribution, or
reproduction of this transmission by unintended recipients is not
authorized and may be unlawful.
_______________________________________________
bind-users mailing list
bind-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

More information about the bind-users mailing list