From owner-freebsd-questions Thu Dec 2 2:50:54 1999 Delivered-To: freebsd-questions@freebsd.org Received: from athserv.otenet.gr (athserv.otenet.gr [195.170.0.1]) by hub.freebsd.org (Postfix) with ESMTP id 6459414F72 for ; Thu, 2 Dec 1999 02:50:51 -0800 (PST) (envelope-from keramida@diogenis.ceid.upatras.gr) Received: from localhost.hell.gr (patr530-a016.otenet.gr [195.167.115.16]) by athserv.otenet.gr (8.9.3/8.9.3) with SMTP id MAA07306 for ; Thu, 2 Dec 1999 12:50:03 +0200 (EET) Received: (qmail 5709 invoked by uid 1001); 2 Dec 1999 10:36:50 -0000 Date: Thu, 2 Dec 1999 12:36:50 +0200 From: d e a t h To: Kit Cc: FreeBSD Questions Subject: Re: Internal vs External DNS (2 nameds) Message-ID: <19991202123650.C5160@hades.hell.gr> Reply-To: keramida@ceid.upatras.gr References: <19991201225936.B10261@amethyst.hypostasis.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0pre3i In-Reply-To: <19991201225936.B10261@amethyst.hypostasis.com> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, Dec 01, 1999 at 10:59:36PM +1300, Kit wrote: > Hi > I am wanting to run separte DNS for internal and external networks > I have a gateway running 3.3-STABLE and bind 8.1.2 > I am considering running 2 copies of named on the one machine to > listen on different interfaces and supply DNS info to differing > groups of hosts, internal and external, so that the internal network > uses the internal names and the rest of the world sees only the external > names, and not any of the internal names. > > To do this I think that I want to add > if [ "X${named2_enable}" = X"YES" ]; then > echo -n ' named2'; ${named_program-"named"} ${named2_flags} > fi > > to rc.network network_pass2 > and > named2_enable="YES" > named2_flags="-c named_flags="-c /etc/namedb/named.int.conf -u bind -g bind" > > to rc.conf Good enough. Take care in the configuration files of the two named's though. Since bind is in the habbit of binding port 53 on *all* the interfaces that are up, you might want to tune their listen-on options so that they don't try to bind the same interface/port combination. Bye -- Giorgos Keramidas, "What we have to learn to do, we learn by doing." [Aristotle] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message