<html><head><style type='text/css'>p { margin: 0; }</style></head><body><div style='font-family: Arial; font-size: 12pt; color: #000000'>Thank you for all your replies!<br><br>I'll try to implement your suggestions using a subdomain.<br><br><br><br>Best regards.<br><span><br><span name="x"></span>
<span style="font-family: arial; font-size: 12px;">
<span style="color: rgb(0, 0, 128); font-size: 15px;">Alberto Zanon </span>
<br>
<span style="color: rgb(128, 128, 128);"></span></span><span style="font-family: arial; font-size: 12px;"><span style="font-size: 11px; color: rgb(128, 0, 0);"> </span></span><span name="x"></span><br></span><br><hr id="zwchr"><b>Da: </b>"Ben Croswell" <ben.croswell@gmail.com><br><b>A: </b>"Alberto Zanon" <alberto.zanon@edistar.com><br><b>Cc: </b>bind-users@lists.isc.org<br><b>Inviato: </b>Giovedì, 17 gennaio 2013 16:21:36<br><b>Oggetto: </b>Re: Define an internal zone with only a couple of A records, then forward to an external dns server<br><br><p dir="ltr">If you load the zone your server will believe it knows everything about the zone and not forward anything below it. </p>
<p dir="ltr">If you load <a href="http://foo.com" target="_blank">foo.com</a> with two records, nothing but those two records will ever resolve on that server for <a href="http://foo.com" target="_blank">foo.com</a>. </p>
<p dir="ltr">One way to make it work would be to load two zones. <a href="http://Vpn1.foo.com" target="_blank">Vpn1.foo.com</a> and <a href="http://vpn2.foo.com" target="_blank">vpn2.foo.com</a> each with their A records. Then you would only blackhole things below <a href="http://vpn1.foo.com" target="_blank">vpn1.foo.com</a> and <a href="http://vpn2.foo.com" target="_blank">vpn2.foo.com</a>. </p>
<div class="gmail_quote">On Jan 17, 2013 10:09 AM, "Alberto Zanon" <<a href="mailto:alberto.zanon@edistar.com" target="_blank">alberto.zanon@edistar.com</a>> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div><div style="font-size: 12pt; font-family: Arial;"><span>Hi all,<br><br>I googled all the morning without success :( I'm using Bind 9.9.1 and i'm a newbie of Bind. This is my goal:<br><br>- I want to define in my dns server a zone "<a href="http://external_partner.com" target="_blank">external_partner.com</a>", which is the domain of our partner who manages it with his dns public server "<a href="http://dns.external_partner.com" target="_blank">dns.external_partner.com</a>".<br>
- I need to define into this zone a couple of servers ("vpn_host_1.</span><span><a href="http://external_partner.com" target="_blank">external_partner.com</a></span><span>", "</span><span>vpn_host_2.</span><span><a href="http://external_partner.com" target="_blank">external_partner.com</a></span><span>") because we connect via vpn to our partner.<br>
- I want that the rest of the names, e.g. "<a href="http://www.external_partner.com" target="_blank">www.external_partner.com</a>", are resolved forwarding the requests to the dns of our partner.<br><br></span><span>I tried this without success:<br>
<br>- in "named.conf":<br><br>zone "</span><span><a href="http://external_partner.com" target="_blank">external_partner.com</a></span><span>" { type master; file "master/</span><span><a href="http://external_partner.com" target="_blank">external_partner.com</a></span><span>.zon"; forwarders {xxx.xxx.xxx.xxx;}; };<br>
<br>and I have "recursion yes" in the options.<br><br><br>- in "</span><span><a href="http://external_partner.com" target="_blank">external_partner.com</a></span><span>.zon" I have only the two entries:<br>
<br>$TTL 300<br>@ IN SOA <a href="http://dns.edistar.com" target="_blank">dns.edistar.com</a>. <a href="http://admin.dns.edistar.com" target="_blank">admin.dns.edistar.com</a>. (<br> <a href="tel:2013011701" target="_blank">2013011701</a> ; Serial<br>
300 ; Refresh<br> 300 ; Retry every hour<br> 300 ; Expire after a week<br>
300 ) ; Minimum ttl of 1 day<br><br> IN NS <a href="http://dns.edistar.com" target="_blank">dns.edistar.com</a>.<br> TXT "vpn servers"<br>
<br><br></span><span>vpn_host_1.</span><span><a href="http://external_partner.com" target="_blank">external_partner.com</a></span><span></span><span>. IN A xxx.xxx.xxx.xxx<br></span><span>vpn_host_2.</span><span><a href="http://external_partner.com" target="_blank">external_partner.com</a></span><span></span><span>. IN A </span><span>xxx.xxx.xxx.xxx</span><br>
<span><br></span><span><br>I read about "forward first" option but is the opposite of my goal, correct?<br><br><br><br><br>Thanks in advance for your responses.<br><br><br><span></span>
<span style="font-family: arial; font-size: 12px;">
<span style="color: rgb(0, 0, 128); font-size: 15px;">Alberto Zanon </span>
<br>
<span style="color: rgb(128, 128, 128);"></span></span></span><br></div></div><br>_______________________________________________<br>
Please visit <a href="https://lists.isc.org/mailman/listinfo/bind-users" target="_blank">https://lists.isc.org/mailman/listinfo/bind-users</a> to unsubscribe from this list<br>
<br>
bind-users mailing list<br>
<a href="mailto:bind-users@lists.isc.org" target="_blank">bind-users@lists.isc.org</a><br>
<a href="https://lists.isc.org/mailman/listinfo/bind-users" target="_blank">https://lists.isc.org/mailman/listinfo/bind-users</a><br></blockquote></div>
</div></body></html>