Erich Eckner wrote:
>
> I'm undecided whether they're authoritative or not. On one hand, they are
> distributed via DHCP as default DNS servers, speaking for "recursive", on
> the other hand, they have matching SOA records (and I think, that means,
> they're authoritative) - maybe they're both?
I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
On Mon, 28 Oct 2019, Tony Finch wrote:
Erich Eckner wrote:
RPZ rewrites responses as they are going out of your nameserver, so you
can't use RPZ to change the way the nameserver's resolver works (because
the resolver depends on incoming r
Erich Eckner wrote:
>
> 1. Set a custom query-source (the one of the vpn interface) for that
> second-level domain. (This would also be applied to all subdomains thereof,
> right?)
>
> 2. Overwrite (by rpz?) the name-servers for that domain to the (somehow
> obtained) internal nameservers (they di
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
I'm running bind as a recursive resolver. This box also has a vpn tunnel
to another network (not mine) with split-horizon dns (internal clients see
different NS entries than external clients; those in turn resolve
different addresses). I wou
4 matches
Mail list logo
