RE: named/Bind8 questions

Thu, 31 Jul 2003 05:12:23 -0700 

Thanks, I'll try that. Do you know if there are RPMs for bind 9 on
Redhat 8.0? Been googling and the only one I've found is from Suse.

Thanks,
James

On Wed, 2003-07-30 at 21:33, Cowles, Steve wrote:
> James Pifer wrote:
> > Besides adding a second DNS server, is there any way for the DNS
> > server to respond to external requests (through the firewall) one
> > way, and to respond to internal requests another?
> 
> Yes, switch to using Bind 9 and then implement its "view" feature. then you
> can then run a single instance of bind that returns an answer based on the
> source address that made the query.
> 
> Example (see below): The external zone returns public ip addresses for
> mydomain.com queries originating from the internet. The internal zone
> returns private IP address for mydomain.com queries originating from the
> local LAN. Note the zone filename between the views. You could even add
> views for your corporate networks/remote offices.
> 
> Steve Cowles
> 
> Cut/Paste from /etc/named.conf
> 
> ###################################################
> # Define Internal View Space
> ###################################################
> view "internal" {
>         # Only allow the following LAN's access to this view
>         match-clients { 192.168.8.0/24; 192.168.9.0/24; 
>                         192.168.10.0/24; 127.0.0.0/24; };
>  
>         # Enable recursion for this view
>         recursion yes;
> 
>         # Load the internal mydomain.com zone as master
>         zone "mydomain.com" in {
>                 type master;
>                 notify yes;
>                 allow-update { none; };
>                 allow-transfer { 192.168.9.3; };
>                 file "int/db.mydomain";
>         };
> 
> More zones.... 
> };
> 
> 
> ###################################################
> # Define External View Space
> ###################################################
> view "external" {
>         # Only everyone access to this view
>         match-clients { any; };
> 
>         # Disable recursion for this view
>         recursion no;
> 
>         # Load the external mydomain.com zone as master
>         zone "mydomain.com" in {
>                 type master;
>                 notify yes;
>                 allow-update { none; };
>                 allow-transfer { xx.xx.xx.xx; };
>                 file "ext/db.mydomain";
>         };
> 
> More zones....
> };
> 
> ###################################################
> # Define more views like corporate...
> ###################################################


-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://www.redhat.com/mailman/listinfo/redhat-list

Reply via email to