Answer for a specific host, but recurse for all others within a zone
Rich Goodson
rgoodson at gronkulator.com
Fri May 9 04:05:09 UTC 2014
On your resolver, create a zone called
something.xyz.com
and only have one entry, an A record for the zone itself. something like this:
---begin something.xyz.com zonefile---
something.xyz.com. in soa ns1.abc.com. hostmaster.abc.com. (
2014050901
3H
300
2W
3600 )
something.xyz.com. in ns ns1.abc.com.
something.xyz.com. in ns ns2.abc.com.
something.xyz.com. in a 192.168.100.15
---end something.xyz.com zonefile---
This will still allow www.xyz.com and mail.xyz.com to resolve, but will NOT recurse for www.something.xyz.com. If you want that to resolve, you'll have to add that to the zone as well, as you're claiming authority for something.xyz.com and everything "to the left" of that as well.
It just occurred to me that you could also provide a local answer for a single name with RPZ, which would give the benefit of continuing to recurse for www.something.xyz.com.
-Rich
On May 9, 2014, at 1:15 AM, fullmerjf at ldschurch.org wrote:
> Does anyone know how I might configure bind to answer for a specific host within the zone, but perform a recursive lookup for the rest of the zone?
>
> For example, given the domain "xyz.com", how might I configure a local DNS server to reslove "something.xyz.com" to, maybe, a local server, but still allow "Wwww.xyz.com", "mail.xyz.com" and "www.something.xyz.com" to still recursively resolve?
>
> Is there a way?
>
> - Jon
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
More information about the bind-users
mailing list