On Mon, 6 Dec 2010, Barry Margolin wrote:
In article ,
Jay Ford wrote:
On Mon, 6 Dec 2010, Martin McCormick wrote:
the config for this private zone is:
zone "r.ds" {
type master;
file "/etc/namedb/master/r.ds.zone";
allow-update {
key updsrv;
};
allow-query
In article ,
Jay Ford wrote:
> On Mon, 6 Dec 2010, Martin McCormick wrote:
> > the config for this private zone is:
> >
> > zone "r.ds" {
> > type master;
> > file "/etc/namedb/master/r.ds.zone";
> >allow-update {
> > key updsrv;
> > };
> >allow-query { any; };
> > #a
Thanks to two list members, I immediately realized what
I needed to do to make this work correctly.
After setting up an authoritative zone for ds, I put in
the NS and A records for the master server and then put in the A
and NS records for r as a deligated zone. It all works fine,
On Dec 6, 2010, at 9:30 AM, Martin McCormick wrote:
> Barry Margolin writes:
>
>> Do you have recursion enabled on your server?
>
> A good question. I have never explisitly disabled it and
> it appears to be on.
The default ACL for allow-recursion is { localhost; localnets; }. That means
On Mon, 6 Dec 2010, Martin McCormick wrote:
the config for this private zone is:
zone "r.ds" {
type master;
file "/etc/namedb/master/r.ds.zone";
allow-update {
key updsrv;
};
allow-query { any; };
#a list of slaves
include "/etc/zoneconfigs/stwnotify";
n
Barry Margolin writes:
> Do you have recursion enabled on your server?
A good question. I have never explisitly disabled it and
it appears to be on.
We have an allow-query list based on ACL's so that
callers from inside our networks get both recursive and
nonrecursive lookups. Sp
In article ,
Martin McCormick wrote:
> After setting up a private zone which should have deligated
> queries to some Microsoft DNS's, I received a report that an
> additional host in that domain did not resolve. They were right.
> I had to put an A record in my deligated zone for that system to
After setting up a private zone which should have deligated
queries to some Microsoft DNS's, I received a report that an
additional host in that domain did not resolve. They were right.
I had to put an A record in my deligated zone for that system to
make it resolve so I think I have something set
8 matches
Mail list logo
