From owner-freebsd-questions@FreeBSD.ORG Wed May 26 02:44:11 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1A25E1065670 for ; Wed, 26 May 2010 02:44:11 +0000 (UTC) (envelope-from drew@mykitchentable.net) Received: from smtp1.mc.surewest.net (qsmtp.mc.surewest.net [66.60.130.145]) by mx1.freebsd.org (Postfix) with SMTP id E37D88FC0C for ; Wed, 26 May 2010 02:44:10 +0000 (UTC) Received: (qmail 21826 invoked from network); 25 May 2010 19:43:41 -0700 Received: by simscan 1.1.0 ppid: 21810, pid: 21811, t: 2.3155s scanners: regex: 1.1.0 attach: 1.1.0 spam: 3.1.7-deb X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on smtp1.surewest.net X-Spam-Level: * X-Spam-Status: No, score=1.8 required=13.5 tests=RATWARE_GECKO_BUILD autolearn=disabled version=3.1.7-deb X-Spam-CMAE-Analysis: _CMAETAG_ Received: from unknown (HELO blacklamb.mykitchentable.net) (69.62.230.77) by smtp1 with SMTP; 25 May 2010 19:43:39 -0700 Received: from [127.0.0.1] (unknown [192.168.2.3]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by blacklamb.mykitchentable.net (Postfix) with ESMTPSA id 99AD7165777; Tue, 25 May 2010 19:44:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=mykitchentable.net; s=default; t=1274841848; bh=GNQ8j91TqlS1OZff65cQz6n8TYbfS3DL1iei9dUuD88=; h=Message-ID:Date:From:MIME-Version:To:CC:Subject:References: In-Reply-To:Content-Type:Content-Transfer-Encoding; b=3bQtpduNxSQnVryed8q9B4rIbqUIlOqAlhzKSYZg3wwta4u/xRQk26b1hK/tpKYZ/ Dtj9jXYWgVSGEFzwa3eXrKQD5qU4kTayaz214wIzhvAKHAm82guNRiJ6dNZ13TaP0/ HFMcXS1+iIGyzI7BIMCgWUiXppfzSD12YFIFfJ/8= Message-ID: <4BFC8AF9.1010003@mykitchentable.net> Date: Tue, 25 May 2010 19:44:09 -0700 From: Drew Tomlinson User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.9) Gecko/20100317 Thunderbird/3.0.4 MIME-Version: 1.0 To: Thomas Keusch References: <4BFC5D7C.1040001@mykitchentable.net> <20100525235819.GA8262@gothschlampen.com> In-Reply-To: <20100525235819.GA8262@gothschlampen.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Antivirus: avast! (VPS 100525-1, 05/25/2010), Outbound message X-Antivirus-Status: Clean Cc: FreeBSD Questions Subject: Re: named - Is It Possible to Forward Requests for One Domain to Another Server? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 May 2010 02:44:11 -0000 On 5/25/2010 4:58 PM, Thomas Keusch wrote: > On Tue, May 25, 2010 at 04:30:04PM -0700, Drew Tomlinson wrote: > > Hi Drew, > > >> In my home network, I have named running to resolve machines on my LAN. >> It is also configured to forward requests to my ISP for all other queries. >> >> On another machine in my LAN, I used mpd to create a vpn connection to >> my work and set appropriate routes so that any machine on my LAN can >> access any machine at my work over the vpn (using mpd's nat function). >> This works when accessing via the IP address. Now I'm trying to get DNS >> resolution for machines at work. >> >> Is there some way I can tell named to request DNS info for my work >> domain from my work's DNS server available over the vpn? Does this make >> sense? >> > Yes, it makes sense. What you're looking for is a "forward" type zone in > named.conf, like > > zone "foobar.com" { > type forward; > forward only; > forwarders { ip_of_work_dns_server; }; > }; > > I'm not sure if I got the syntax 100% right. > > Also consider that this might interfere with the setup of the VPN, if > you're using DNS names in the configuration, as named will not be able > to resolve hosts in "foobar.com" without being able to reach > ip_of_work_dns_server. > Hi Thomas, Thank you for your reply. That was what I needed. Cheers, Drew