Error in answer in the FAQ?
Cricket Liu
cricket at menandmice.com
Sat May 4 04:23:47 UTC 2002
Hi!
I just ran across the FAQ in the BIND 9 distribution, which I hadn't noticed
before. Nice job!
I have some questions about the answer describing how to set up a slave
for multiple views, though. Here's the answer:
"A: You will need to give the master and slave multiple IP addresses and
use those to make sure you reach the correct view on the other machine.
e.g.
Master: 10.0.1.1 (internal), 10.0.1.2 (external, IP alias)
internal:
match-clients { !10.0.1.2; !10.0.1.4; 10.0.1/24; };
notify-source 10.0.1.1;
transfer-source 10.0.1.1;
query-source 10.0.1.1;
external:
match-clients { any; };
recursion no; // don't offer recursion to the world
notify-source 10.0.1.2;
transfer-source 10.0.1.2;
query-source 10.0.1.2;
Slave: 10.0.1.3 (internal), 10.0.1.4 (external, IP alias)
internal:
match-clients { !10.0.1.2; !10.0.1.4; 10.0.1/24; };
notify-source 10.0.1.3;
transfer-source 10.0.1.3;
query-source 10.0.1.3;
external:
match-clients { any; };
recursion no; // don't offer recursion to the world
notify-source 10.0.1.4;
transfer-source 10.0.1.4;
query-source 10.0.1.4;
You put the external address on the alias so that all the other
dns clients on these boxes see the internal view by default."
First, while I realize this is "pseudo-named.conf" format, the syntax
for query-source is wrong, isn't it? It should be:
query-source address 10.0.1.1;
Second, why are the transfer-source and query-source substatements
necessary on the master, and the notify-source and query-source
substatements necessary on the slave? I would have expected
notify-source on the master and transfer-source on the slave to cover
it.
cricket
More information about the bind-workers
mailing list