Internal clients' queries for "myhostname." get sent to forwarders. Why?
dot at dotat.at
Tue Mar 11 11:28:08 UTC 2014
Andreas Ntaflos <daff at pseudoterminal.org> wrote:
> Using Bind 9 on Ubuntu 12.04 for internal DNS (master for zones
> "dc01.example.at.", "7.1.10.in-addr.arpa.", ...) with forwarders (ISP's
> nameservers) for everything outside of internal zones.
> The Problem: Clients, when running "hostname -f" or "hostname -i",
> create queries for "myhostname." which are sent to the forwarders which
> respond with NXDomain. This generates load on the forwarders and exposes
> our internally used hostnames, both of which seems unnecessary and
> possible dangerous.
> This doesn't seem like normal or healthy behaviour. What can we do to
> stop it?
Option 1: put the FQDN in /etc/hostname on each machine.
Option 2: populate /etc/hosts on each machine.
Option 3: slave the root zone on your name servers.
f.anthony.n.finch <dot at dotat.at> http://dotat.at/
Shannon: Southeasterly 4 or 5, occasionally 6 in northwest. Moderate or rough.
Fair. Moderate or good.
More information about the bind-users