Trying to define an "in-view" zone without success
Alain Fontaine
alain.fontaine at uclouvain.be
Mon Jan 19 15:13:31 UTC 2015
Running BIND 9.10.1-P1, I am trying to use the new 'in-view' option.
Here is a digest of the configuration:
acl "clients-internes" {
list_of_inside_addresses;
};
view "interne" {
match-clients { clients-internes; };
recursion yes;
allow-query { clients-internes; };
dnssec-validation auto;
dnssec-lookaside auto;
max-cache-size 2048M;
response-policy { zone "filtre"; };
zone testzone.net {
type slave;
file "slave.int/net.testzone";
masters { address_of_master; };
};
};
view "externe" {
match-clients { any; };
recursion no;
additional-from-cache no;
max-cache-size 1M;
zone testzone.net { in-view "interne"; };
};
There is no error message when reloading, but querying the zone from an "outside" address gives "REFUSED", as if the zone did not exist in the "externe" view.
BTW, all goes well if the zone is defined as follows in the "externe" view:
zone testzone.net {
type slave;
file "slave.ext/net.testzone";
masters { address_of_master; };
};
Any suggestion will be appreciated.
More information about the bind-users
mailing list