From owner-freebsd-questions@FreeBSD.ORG  Mon Feb 20 19:12:45 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 683B116A422
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Feb 2006 19:12:45 +0000 (GMT) (envelope-from bsd@todoo.biz)
Received: from newmail.rmm.fr (newmail.rmm.fr [195.115.46.198])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D3E0943D6E
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Feb 2006 19:12:38 +0000 (GMT) (envelope-from bsd@todoo.biz)
Received: from localhost (localhost [127.0.0.1])
	by newmail.rmm.fr (Postfix) with ESMTP id 359A229F9D;
	Mon, 20 Feb 2006 20:12:34 +0100 (CET)
Received: from newmail.rmm.fr ([127.0.0.1])
	by localhost (newmail.rmm.fr [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 27477-09; Mon, 20 Feb 2006 20:12:32 +0100 (CET)
Received: from [10.0.1.201] (me.todoo.biz [82.66.93.242])
	(using TLSv1 with cipher RC4-SHA (128/128 bits))
	(No client certificate requested)
	by newmail.rmm.fr (Postfix) with ESMTP id CC38329F9B;
	Mon, 20 Feb 2006 20:12:31 +0100 (CET)
In-Reply-To: <1140335174.19974.19.camel@lmail.bathnetworks.co.uk>
References: <1140335174.19974.19.camel@lmail.bathnetworks.co.uk>
Mime-Version: 1.0 (Apple Message framework v746.2)
Content-Type: text/plain; charset=ISO-8859-1; delsp=yes; format=flowed
Message-Id: <B2AC1179-2F0A-4153-9DC9-DBDD6D65C4F4@todoo.biz>
Content-Transfer-Encoding: quoted-printable
From: bsd <bsd@todoo.biz>
Date: Mon, 20 Feb 2006 20:12:20 +0100
To: Robert Slade <bsd@bathnetworks.com>
X-Mailer: Apple Mail (2.746.2)
X-Virus-Scanned: by amavisd-new at rmm.fr
Cc: Liste FreeBSD <freebsd-questions@freebsd.org>
Subject: Re: Multiple DNS
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Feb 2006 19:12:45 -0000


Le 19 f=E9vr. 06 =E0 08:46, Robert Slade a =E9crit :

> Hi,
>
> I am looking for some advice. I have a network which is based on a
> number of servers running FreeBsd 6.0 serving Win XP work stations. =20=

> (yes
> I know but..) The network is large enough to use DHCP and DNS for the
> internal network, I have setup a DHCP server with a Dynamic DNS =20
> (Bind 9)
> on one of the servers. That server is handling the LDAP side of the
> domain.
>

Is your DNS server busy resolving internal requests or external ones ?

> There appears to be a fair bit of DNS Traffic which leads to a =20
> secondary
> DNS being required to take some of the load as DNS lookup are slow. =20=

> The
> question I have is should I just setup a cashing DNS on another server
> using the primary as a forwarder or even several servers eg the mail
> server and the secondary LDAP server, or should I setup a proper
> secondary DNS using my ISP as a forwarder with dynamic updates from =20=

> the
> primary.
>

You should not forward anything to your ISP. This is probably the =20
main reason for your DNS beeing slow.

You should make shure you have well defined your network in your conf =20=

(so that you don't resolve queries for outside users...)-
I would not advise you to forward any queries to your ISP as this =20
will disable the capacity for your own server to build It's own =20
resolver database and forward all the queries to the ISP (resulting =20
in slow answers)!


Normaly you should configure the master and the slave to be =20
authoritative for your internal domains.
And configure the master and the slave to resolve ALL the Internet =20
domains for your internal network and none for outside domains.


DNS is very tightly related to network... And we don't have any clue =20
for the topology of your Net.


SHORT ANSWER : DON'T FORWARD --> BUILD YOUR OWN DATABASE!!


> Sorry if this is a bit vague, but I have no experience in this area.
>
> Rob
>
>
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-=20
> unsubscribe@freebsd.org"

________________________________________________
=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=
=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7
=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=
=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF
Gregober ---> PGP ID --> 0x1BA3C2FD
bsd @at@ todoo.biz
________________________________________________
=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=
=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7
=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=
=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF