<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">On 8/27/2013 1:07 PM, Colin Harvey
wrote:<br>
</div>
<blockquote
cite="mid:1377623240.38773.YahooMailNeo@web160104.mail.bf1.yahoo.com"
type="cite">
<div style="color:#000; background-color:#fff; font-family:times
new roman, new york, times, serif;font-size:12pt">
<div style="RIGHT: auto"> </div>
<div style="RIGHT: auto">My environment is firewalled from the
real world. For queries on zones to which I'm not master, I
want to recurse to a corporate server. nslookup
some.internal.hostname.com internal.corporate.server works
fine. </div>
</div>
</blockquote>
nslookup is a terrible DNS troubleshooting tool. Try dig. And to
mimic how your nameserver would talk to the other nameserver, use
the options +norec and +bufsiz=4096 (unless you've changed your
EDNS0 buffer size from the default, in which case, plug in that
value instead).<br>
<br>
<blockquote
cite="mid:1377623240.38773.YahooMailNeo@web160104.mail.bf1.yahoo.com"
type="cite">
<div style="color:#000; background-color:#fff; font-family:times
new roman, new york, times, serif;font-size:12pt">
<div style="RIGHT: auto">Setting "." to use this internal server
in the root.hints file does not. In fact I do not even see my
system trying to recurse. (I'm looking at network traffic
with a sniffer.)</div>
<div style="RIGHT: auto"> </div>
<div style="RIGHT: auto">My root.hints:</div>
<div style="RIGHT: auto"> </div>
<div style="RIGHT: auto">.<span style="RIGHT: auto" class="tab"> 600<span
style="RIGHT: auto" class="tab"> IN<span style="RIGHT:
auto" class="tab"> NS<span style="RIGHT: auto"
class="tab"> internal.corporate.server.</span></span></span></span></div>
<div style="RIGHT: auto"><span style="RIGHT: auto" class="tab"><span
style="RIGHT: auto" class="tab"><span style="RIGHT: auto"
class="tab"><span style="RIGHT: auto" class="tab">internal.corporate.server.<span
style="RIGHT: auto" class="tab"> 600<span
style="RIGHT: auto" class="tab"> IN<span
style="RIGHT: auto" class="tab"> A<span
style="RIGHT: auto" class="tab"> 192.168.1.1</span></span></span></span></span></span></span></span></div>
<div style="RIGHT: auto"><span style="RIGHT: auto" class="tab"><span
style="RIGHT: auto" class="tab"><span style="RIGHT: auto"
class="tab"><span style="RIGHT: auto" class="tab"><span
style="RIGHT: auto" class="tab"><span style="RIGHT:
auto" class="tab"><span style="RIGHT: auto"
class="tab"><span style="RIGHT: auto"
class="tab"></span></span></span></span></span></span></span></span> </div>
</div>
</blockquote>
Do you have recursion enabled?<br>
<blockquote
cite="mid:1377623240.38773.YahooMailNeo@web160104.mail.bf1.yahoo.com"
type="cite">
<div style="color:#000; background-color:#fff; font-family:times
new roman, new york, times, serif;font-size:12pt">
<div style="BACKGROUND-COLOR: transparent; FONT-STYLE: normal;
FONT-FAMILY: times new roman, new york, times, serif; COLOR:
rgb(0,0,0); FONT-SIZE: 16px; RIGHT: auto"><span style="RIGHT:
auto" class="tab"><span style="RIGHT: auto" class="tab"><span
style="RIGHT: auto" class="tab"><span style="RIGHT:
auto" class="tab"><span style="RIGHT: auto"
class="tab"><span style="RIGHT: auto" class="tab"><span
style="RIGHT: auto" class="tab"><span
style="RIGHT: auto" class="tab">Alternatively
I've setup a forwarding zone in named.conf to
query 192.168.1.1 for
'internal.hostname.com'. </span></span></span></span></span></span></span></span></div>
</div>
</blockquote>
Ugh, don't do that. Forwarding is for getting around network
restrictions or limitations, and you haven't (so far) indicated that
you have any of those to deal with.<br>
<br>
- Kevin<br>
<br>
</body>
</html>