From owner-freebsd-questions  Fri Apr 28 13:26:17 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from java.dpcsys.com (java.dpcsys.com [206.16.184.7])
	by hub.freebsd.org (Postfix) with ESMTP id E255F37B939
	for <questions@FreeBSD.ORG>; Fri, 28 Apr 2000 13:26:13 -0700 (PDT)
	(envelope-from dan@dpcsys.com)
Received: from localhost (dan@localhost)
	by java.dpcsys.com (8.10.0.Beta12/8.10.0.Beta12) with SMTP id e3SKXRF23199;
	Fri, 28 Apr 2000 13:33:27 -0700 (PDT)
Date: Fri, 28 Apr 2000 13:33:27 -0700 (PDT)
From: Dan Busarow <dan@dpcsys.com>
To: Stephen Krauth <stephenk@anim.dreamworks.com>
Cc: questions@FreeBSD.ORG
Subject: Re: Confusion between inside and outside domain names with natd
In-Reply-To: <Pine.SGI.4.05.10004281103001.73172-100000@misty.anim.dreamworks.com>
Message-ID: <Pine.BSF.3.96.1000428132940.25259R-100000@java.dpcsys.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri, 28 Apr 2000, Stephen Krauth wrote:
> Ok, what I'd like to have is a NAT network that looks like a regular
> university style network, in that the gateway appears to the outside world
> with the same domain name as the machines on the inside. So DNS in the
> outside world would resolve xyz.com to my gateway, and thus I could send
> mail from the outside to xyz.com. Each machine on the inside would resolve
> to machine.xyz.com, and thus mail sent from them to the outside will have
> correct return addresses (as long as machine names are stripped from
> addresses).
> 
> Right now I have one DNS serving two seperate zones; xyz.com for the
> outside world and abc.org for the inside machines.  This causes other
> grief besides the mail dilemma above (which is why a sendmail solution
> doesn't appreal to me). I can't figure out how to make BOTH sides xyz.com
> without stomping on each other.  Any ideas?  Is this impossible?  Thanks.

zone "xuz.com" {
   type=master;
   file="db.xyz";
}
zone "inside.xuz.com" {
   type=master;
   file="db.inside.xyz";
}

and in db.xyz

inside IN NS ns.xyz.com.

if you want outsiders to be able to resolve machine.inside.xyz.com
See the _DNS and BIND_ chapter on parenting.

Re: email, just turn on masquerading in sendmail.cf to strip all
but xyz.com on outgoing mail.

Dan
-- 
 Dan Busarow                                                  949 443 4172
 Dana Point Communications, Inc.                            dan@dpcsys.com
 Dana Point, California  83 09 EF 59 E0 11 89 B4   8D 09 DB FD E1 DD 0C 82



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message