From owner-freebsd-questions  Tue Jan  4 17:10:38 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from ducky.nz.freebsd.org (chilled.unixathome.org [203.79.82.27])
	by hub.freebsd.org (Postfix) with ESMTP id A811B14ED5
	for <freebsd-questions@FreeBSD.ORG>; Tue,  4 Jan 2000 17:10:32 -0800 (PST)
	(envelope-from dan@langille.org)
Received: from wocker (wocker.int.nz.freebsd.org [192.168.0.99])
	by ducky.nz.freebsd.org (8.9.3/8.9.3) with ESMTP id OAA60794;
	Wed, 5 Jan 2000 14:10:25 +1300 (NZDT)
Message-Id: <200001050110.OAA60794@ducky.nz.freebsd.org>
From: "Dan Langille" <dan@langille.org>
Organization: langille.org
To: Colin Campbell <sgcccdc@citec.qld.gov.au>
Date: Wed, 5 Jan 2000 14:10:23 +1300
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Subject: Re: two copies of bind or two name servers?
Reply-To: dan@langille.org
Cc: freebsd-questions@FreeBSD.ORG
References: <200001041035.XAA56537@ducky.nz.freebsd.org>
In-reply-to: <Pine.LNX.4.10.10001050929480.2370-100000@guru.citec.qld.gov.au>
X-mailer: Pegasus Mail for Win32 (v3.12a)
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On 5 Jan 00, at 9:37, Colin Campbell wrote:

> Hi,
> 
> Here's one way to do it on the "bastion" host.
> 
> internal dns
> - bind to 127.0.0.1 and internal interface
> - forward to external interface
> 
> external dns
> - binds to external interface
> - forward to isp
> 
> resolver
> - point to 127.0.0.1 or internal interface
> 
> Internal hosts point their resolver at the internal interface of the
> bastion.
> 
> What happens?
> 
> >From outside, the world can only see your external DNS.
> 
> Inside hosts can resolve off the internal DNS. Systems on the bastion can
> see both internal and external (via forwarding) dns.

An addenda to my previous message.  I seem to now be getting many 
lame server notifications.  I haven't tracked this one down yet:

Lame server on 'pop3.xtra.co.nz' (in 'XTRA.CO.NZ'?): [192.168.1.1].53
Lame server on 'freebsdzine.org' (in 'freebsdzine.org'?): [192.168.1.1].53
Lame server on 'rock.ghis.net' (in 'GHIS.NET'?): [192.168.1.1].53
Lame server on '22.128.150.209.in-addr.arpa' (in '128.150.209.IN-
ADDR.ARPA'?): [192.168.1.1].53
Lame server on 'metis.host4u.net' (in 'HOST4U.NET'?): [192.168.1.1].53

If I revert to my original DNS setup, these no longer occur.

I'll report back if I find out why.
--
Dan Langille  [I'm looking for more work]
http://www.langille.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message