From owner-freebsd-questions Thu Nov 22 1:51:42 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mip.co.za (puck.mip.co.za [209.212.106.44]) by hub.freebsd.org (Postfix) with ESMTP id 070C837B416 for ; Thu, 22 Nov 2001 01:51:36 -0800 (PST) Received: from patrick (patrick.mip.co.za [10.3.13.181]) by mip.co.za (8.9.3/8.9.3) with SMTP id LAA32843 for ; Thu, 22 Nov 2001 11:51:48 +0200 (SAST) (envelope-from patrick@mip.co.za) From: "Patrick O'Reilly" To: "FreeBSD Question List" Subject: Multiple NameD instances ? Date: Thu, 22 Nov 2001 11:56:50 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi all. The named man page does not make any reference to this possibility (as far as I can see). I am running a FreeBSD gateway/firewall, and I also run named on the same box. Since I have entries for all my internal hosts, as well as for hosts in the DMZ (on public IPs), it is now possible for people on the outside to do like so: ----------------------------------------------- # nslookup patrick.mydomain.com Server: dns.mydomain.com Address: x.x.x.42 Name: patrick.mydomain.com Address: 10.3.13.181 ----------------------------------------------- OK, so I disabled it again because I don't think it's a good idea to publish private IP addresses on Public DNS since they are not routable on the public network. For the moment I run two different DNS servers, one with the public info only (the gateway box) and the other inside my LAN with the public AND private info. But, I need to keep them synchronised by hand. So, the question(s): Is there a way to run two instances of named on one box, with one instance answering any requests that enter on the public interface, and the other instance answering the private interface? Or, can one instance be configured to answer both, but making private information available internally only, but public information available either way? Thanks in advance. Patrick. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message