Date: Wed, 23 May 2001 09:05:52 +0100 From: Mark Drayton <mark.drayton@4thwave.co.uk> To: Nick Rogness <nick@rogness.net> Cc: freebsd-isp@freebsd.org Subject: Re: Resolving DNS setup Message-ID: <20010523090552.A6992@tethys.valhalla.net> In-Reply-To: <Pine.BSF.4.21.0105221426060.91693-100000@cody.jharris.com>; from nick@rogness.net on Tue, May 22, 2001 at 02:35:52PM -0500 References: <20010522185407.A30604@tethys.valhalla.net> <Pine.BSF.4.21.0105221426060.91693-100000@cody.jharris.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Nick Rogness (nick@rogness.net) wrote:
> On Tue, 22 May 2001, Mark Drayton wrote:
>
> > Recently I set up a caching only nameserver at work which all our
> > office machines, servers and dialup customers use for resolution
> > instead of our two authoritative nameservers. A few days ago our
> > internet connection went down, meaning that the caching nameserver
> > couldn't get to the root nameservers and therefore couldn't resolve
> > anything it didn't have cached. As it couldn't get to the root
> > servers it also couldn't answer any queries for zones that we are
> > authoritative for (even though the authoritative namesevers are on
> > the same network).
> >
> > The end result of this was that customers who dialled into us
> > couldn't see our site or pick up their mail as the caching
> > nameserver wouldn't resolve the hostnames of the web/mail servers.
>
> One solution maybe to add your authoritative name servers as
> forwarders in your caching only server config.
If I do that won't the caching servers pass *all* requests to the
authoritative servers (unless it has a valid answer cached)? One og the
reasons I'm setting up the caching servers is to take the load off of
the authoritative servers. Ultimately I don't want the authoritative
servers to answer recursive queries.
I was looking through the BIND docs and it appears I can define 'forward
zones' with their own list of forwarders that override the global
forwarders {} statement. I might try configuring the caching namesever
with forward zones for all our zones to pass the requests to our
authoritative servers. Any problems with this setup?
> No, caching nameserver should get the info directly if it is not
> cached locally, plain and simple. The TTL for that record on the
> caching nameserver will take affect after it has been cached locally
> on the caching nameserver.
Hm, it seems to be working now...
Cheers,
--
Mark Drayton
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010523090552.A6992>