Date: Mon, 10 Apr 2006 18:04:17 +0100 From: Alex Zbyslaw <xfb52@dial.pipex.com> To: Matthias.Apitz@Sisis.de Cc: freebsd-questions@freebsd.org Subject: Re: /etc/resolv.conf with 3 nameservers Message-ID: <443A9011.7040802@dial.pipex.com> In-Reply-To: <20060410154903.GA1133@rebelion.Sisis.de> References: <20060410135448.GA10388@rebelion.Sisis.de> <443A6F64.70701@allenmyland.com> <20060410145154.GA11743@rebelion.Sisis.de> <443A74B6.20003@dial.pipex.com> <20060410154903.GA1133@rebelion.Sisis.de>
next in thread | previous in thread | raw e-mail | index | archive | help
guru@Sisis.de wrote: >El d=EDa Monday, April 10, 2006 a las 04:07:34PM +0100, Alex Zbyslaw esc= ribi=F3: > =20 > >>There's nothing to stop you configuring that local nameserver to use=20 >>your two "backups" for names that it cannot resolve. >> >>You could then leave the two backups in /etc/resolv.conf but if your=20 >>local nameserver is authoritative for your local domain, then you=20 >>probably want to know if it goes away, and those backups won't be able = >>to look up names in your local domain. >> >>I'm making some assumptions about why you set things up this way in the= =20 >>first place, and I may be wrong, but there's too little info in your=20 >>post to give definitive suggestions. >> =20 >> > >The anderlying problem is that we are three companies, now connected >through VPN tunnels. Each company runs it's own DNS server internaly and= >without publicating all its names to Internet. The three DNS are >10.0.1.201 (mine one), xxx.xxx.xxx.xxx and yyy.yyy.yyy.yyy.=20 > >Any idea? Yes, in the future we will unify the whole zone, but this is >not a short term option... > =20 > Presumably all three ranges have distinct domain names E.g. company1.de = company2.de company3.de I am no expert of DNS, but isn't all you need for each "company" to run=20 nameservers which are slaves (secondaries) for the other 2 as well as=20 master of their own? So the nameserver at company1 is master for=20 company1.de and is a slave for company2.de and company3.de etc. Of course, you might want some redundancy in that scenario, with each=20 company running DNS on another server as well, and that one being a=20 slave for all 3 domains. If you don't know enough to do that, I strongly recommend getting the=20 latest edition of O'Reilly "DNS and BIND"; and you should find BIND doc=20 on your FreeBSD system starting in /usr/share/doc/bind9/arm/Bv9ARM.html. Best, --Alex
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?443A9011.7040802>