<!DOCTYPE html>
<html data-lt-installed="true">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
</head>
<body style="padding-bottom: 1px;">
<p>As I understand it bind_dlz does not support multiple views, I
have to following scenario and am trying to figure out how to
configure it:</p>
<ul>
<li>Internal (192.168.10.0/24) </li>
<ul>
<li>resolve internal domain xyz.com</li>
<li>resolve internal samba domain xyz.lab</li>
<li>resolve single address xyz.3cx.us to 192.168.10.25</li>
</ul>
<li>External is resolved by a different server and xyz.3cx.us
resolves to a public address</li>
<li>VPN (10.9.0.0/24)</li>
<ul>
<li>resolve internal domain xyz.com</li>
<li>
resolve internal samba domain xyz.lab</li>
<li>
resolve single address xyz.3cx.us via normal public dns or
alternatively resolve to external address</li>
</ul>
</ul>
<p>I initially set this up with views:</p>
<p>
<blockquote type="cite"> acl internals { 192.168.10.0/24;
192.168.11.0/24; localhost; };<br>
acl vpn { 10.9.0.0/24; };<br>
<br>
view trusted {<br>
match-clients { internals; };<br>
zone "MYDOMAIN.com" IN { type master; file
"/etc/bind/db.MYDOMAIN.com"; allow-update { none; }; };<br>
zone "3cx.us" IN { type master; file
"/etc/bind/db.3cx.us"; allow-update { none; }; };<br>
};<br>
<br>
view vpn {<br>
match-clients { vpn; };<br>
zone "MYDOMAIN.com" IN { type master; file
"/etc/bind/db.MYDOMAIN.com"; allow-update { none; }; };<br>
};</blockquote>
<br>
</p>
<p>But this crashes as soon as I add:<br>
<blockquote type="cite">dlz "AD DNS Zone" {<br>
database "dlopen
/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_18.so";<br>
};<br>
</blockquote>
<br>
So I split out DNS from ADDC, configured bind on DC to forward to
another DNS and setup views there, but that doesnt work either as
all requests now come from IP of the DC and so the ACLs wont
match.</p>
<p>Any ideas how I can accomplish this?</p>
<p>Peter<br>
</p>
<p><br>
</p>
<p></p>
</body>
<lt-container></lt-container>
</html>