Date: Wed, 5 Jan 2000 14:10:23 +1300 From: "Dan Langille" <dan@langille.org> To: Colin Campbell <sgcccdc@citec.qld.gov.au> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: two copies of bind or two name servers? Message-ID: <200001050110.OAA60794@ducky.nz.freebsd.org> In-Reply-To: <Pine.LNX.4.10.10001050929480.2370-100000@guru.citec.qld.gov.au> References: <200001041035.XAA56537@ducky.nz.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 5 Jan 00, at 9:37, Colin Campbell wrote: > Hi, > > Here's one way to do it on the "bastion" host. > > internal dns > - bind to 127.0.0.1 and internal interface > - forward to external interface > > external dns > - binds to external interface > - forward to isp > > resolver > - point to 127.0.0.1 or internal interface > > Internal hosts point their resolver at the internal interface of the > bastion. > > What happens? > > >From outside, the world can only see your external DNS. > > Inside hosts can resolve off the internal DNS. Systems on the bastion can > see both internal and external (via forwarding) dns. An addenda to my previous message. I seem to now be getting many lame server notifications. I haven't tracked this one down yet: Lame server on 'pop3.xtra.co.nz' (in 'XTRA.CO.NZ'?): [192.168.1.1].53 Lame server on 'freebsdzine.org' (in 'freebsdzine.org'?): [192.168.1.1].53 Lame server on 'rock.ghis.net' (in 'GHIS.NET'?): [192.168.1.1].53 Lame server on '22.128.150.209.in-addr.arpa' (in '128.150.209.IN- ADDR.ARPA'?): [192.168.1.1].53 Lame server on 'metis.host4u.net' (in 'HOST4U.NET'?): [192.168.1.1].53 If I revert to my original DNS setup, these no longer occur. I'll report back if I find out why. -- Dan Langille [I'm looking for more work] http://www.langille.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200001050110.OAA60794>