From owner-freebsd-questions@FreeBSD.ORG Tue Jun 17 19:15:39 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1605D37B401 for ; Tue, 17 Jun 2003 19:15:39 -0700 (PDT) Received: from Shenton.org (23.ebbed1.client.atlantech.net [209.190.235.35]) by mx1.FreeBSD.org (Postfix) with SMTP id EE65243FAF for ; Tue, 17 Jun 2003 19:15:37 -0700 (PDT) (envelope-from chris@Shenton.Org) Received: (qmail 28538 invoked by uid 1000); 18 Jun 2003 02:15:32 -0000 To: JacobRhoden References: <00c101c3353c$4ecbe100$0100a8c0@ibacsoft.dynu.com> <200306181208.28443.jrhoden@unimelb.edu.au> From: Chris Shenton Date: 17 Jun 2003 22:15:32 -0400 In-Reply-To: <200306181208.28443.jrhoden@unimelb.edu.au> Message-ID: <87wufkjfln.fsf@PECTOPAH.shenton.org> Lines: 26 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: Alfonso Romero cc: freebsd-questions@freebsd.org Subject: Re: Two DNS servers with one IP address X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Jun 2003 02:15:39 -0000 JacobRhoden writes: > On Wed, 18 Jun 2003 11:52 am, Alfonso Romero wrote: > > Is it possible to have two DNS servers with only one public IP address? I > > have a FreeBSD gateway connected to the Internet with a DSL modem, using > > natd to connect the other PCs on my LAN, and was wondering if I could have > > two DNS servers to register domain names. > > No its not. If you really wanted two seperate nameservers on 1 machine (which > are both accessable to the world) you will need to have two static ips at > that box. What are you trying to do? Serve one set of data to the Internet (world) and a different set to your internal LAN? This is common for hiding internal host/address information. It's usually called "split dns" or "split brain" or "split horizon". I believe BIND can do this, but I haven't used it for this. I've been using the "djbdns" suite which has this built in. Each record can be tagged with a label which can be associated with a set of addresses (e.g., inside LAN, anyone else) and it will reveal or hide that record based on the requestor's address. djbdns is a rather different architecture than BIND so if you're used to BIND it's a bit of a learning curve. If you're not wedded to BIND, you might be interested in djbdns. Check www.djbdns.org, the record label you want is the percent sign.