From owner-freebsd-questions@FreeBSD.ORG Tue May 25 23:58:37 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2C3F21065674 for ; Tue, 25 May 2010 23:58:37 +0000 (UTC) (envelope-from fwd@gothschlampen.com) Received: from vs.gothschlampen.com (vs.gothschlampen.com [85.93.11.85]) by mx1.freebsd.org (Postfix) with ESMTP id E6AC98FC08 for ; Tue, 25 May 2010 23:58:36 +0000 (UTC) Received: by vs.gothschlampen.com (Postfix, from userid 667) id 1F64D1D30B0; Wed, 26 May 2010 01:58:19 +0200 (CEST) Date: Wed, 26 May 2010 01:58:19 +0200 From: Thomas Keusch To: Drew Tomlinson Message-ID: <20100525235819.GA8262@gothschlampen.com> References: <4BFC5D7C.1040001@mykitchentable.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4BFC5D7C.1040001@mykitchentable.net> User-Agent: Mutt/1.5.13 (2006-08-11) Cc: FreeBSD Questions Subject: Re: named - Is It Possible to Forward Requests for One Domain to Another Server? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 May 2010 23:58:37 -0000 On Tue, May 25, 2010 at 04:30:04PM -0700, Drew Tomlinson wrote: Hi Drew, > In my home network, I have named running to resolve machines on my LAN. > It is also configured to forward requests to my ISP for all other queries. > > On another machine in my LAN, I used mpd to create a vpn connection to > my work and set appropriate routes so that any machine on my LAN can > access any machine at my work over the vpn (using mpd's nat function). > This works when accessing via the IP address. Now I'm trying to get DNS > resolution for machines at work. > > Is there some way I can tell named to request DNS info for my work > domain from my work's DNS server available over the vpn? Does this make > sense? Yes, it makes sense. What you're looking for is a "forward" type zone in named.conf, like zone "foobar.com" { type forward; forward only; forwarders { ip_of_work_dns_server; }; }; I'm not sure if I got the syntax 100% right. Also consider that this might interfere with the setup of the VPN, if you're using DNS names in the configuration, as named will not be able to resolve hosts in "foobar.com" without being able to reach ip_of_work_dns_server. Regards Thomas -- * Freelance Linux & BSD Systemengineer // IT Consultant * -=- Homepage: http://www.bsd-solutions-duesseldorf.de -=-