From owner-freebsd-questions@FreeBSD.ORG Sat Jan 3 22:00:37 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 74F8CD2 for ; Sat, 3 Jan 2015 22:00:37 +0000 (UTC) Received: from smtp.infracaninophile.co.uk (smtp6.infracaninophile.co.uk [IPv6:2001:8b0:151:1:3cd3:cd67:fafa:3d78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "smtp.infracaninophile.co.uk", Issuer "ca.infracaninophile.co.uk" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 172F9645EA for ; Sat, 3 Jan 2015 22:00:36 +0000 (UTC) Received: from seedling.black-earth.co.uk (seedling.black-earth.co.uk [81.2.117.99]) (authenticated bits=0) by smtp.infracaninophile.co.uk (8.15.1/8.15.1) with ESMTPSA id t03M0Ldo069964 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO) for ; Sat, 3 Jan 2015 22:00:28 GMT (envelope-from matthew@FreeBSD.org) Authentication-Results: smtp.infracaninophile.co.uk; dmarc=none header.from=FreeBSD.org DKIM-Filter: OpenDKIM Filter v2.9.2 smtp.infracaninophile.co.uk t03M0Ldo069964 Authentication-Results: smtp.infracaninophile.co.uk/t03M0Ldo069964; dkim=none reason="no signature"; dkim-adsp=none; dkim-atps=neutral Message-ID: <54A86667.7010206@FreeBSD.org> Date: Sat, 03 Jan 2015 22:00:07 +0000 From: Matthew Seaman User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:31.0) Gecko/20100101 Thunderbird/31.3.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Re: bind domain and subdomain on same machines References: In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="3ANnFPtge8J6P3KP2dArDDUwgF9vrI6vs" X-Virus-Scanned: clamav-milter 0.98.5 at lucid-nonsense.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-2.8 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00, URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.0 X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on lucid-nonsense.infracaninophile.co.uk X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 03 Jan 2015 22:00:37 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --3ANnFPtge8J6P3KP2dArDDUwgF9vrI6vs Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 03/01/2015 21:40, helen ly wrote: > can I configure Secondary DNS Server on same primary machine > I have virtual interfaces > i want to make as a domain(primary) and a subdomain(secondary) > can this be archievd only with one zone file for two(domain,subdomain) = and one named.conf.local Sure, you can do this, but not with just one zone file. You will need two zone definitions in your named.conf. Something like: zone "example.com" { type master; file "/usr/local/etc/namedb/master/example.com"; allow-query { any; }; allow-transfer { secondaries; }; }; zone "foo.example.com" { type "slave"; masters { 192.0.2.1; }; allow-query { any; }; }; But you will definitely need separate zone files for the parent and child domains. That's the only way you can have one as primary and the other as a secondary. However, when BIND is acting as the secondary it just transfers the zone data from the primary, and you don't have to do anything to that file other than provide space for it in your filesystem.= Consult the Bind9 ARM for the details of what you can put into zone definitions. Also remember you need to delegate the sub-zone to whatever nameservers you're using by adding suitable NS records in your zone data. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. PGP: http://www.infracaninophile.co.uk/pgpkey --3ANnFPtge8J6P3KP2dArDDUwgF9vrI6vs Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.20 (Darwin) iQJ8BAEBCgBmBQJUqGZ1XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2NTNBNjhCOTEzQTRFNkNGM0UxRTEzMjZC QjIzQUY1MThFMUE0MDEzAAoJELsjr1GOGkAT8S4P/2yfEktvUP63nutVPw356jQf ZY/qUjcJp2wH180Or6RsEPpVh/06R7z4rJX34aPQUxWNrv11ikmC31VsEpD2/MGJ 88HG1E07SQUZCZp6kujLgqAJjeuMh3EfBR7uWJAil0KalyrcmJHJv8Pi70Muyeiz HhX8/2oterqPchTHFr3yB0TD/IRQKjECsX9dS29N0/vAiGgGYa8trro1xQS9XoDn vWmS11Lq8mk0VUyxqT4mWOkzVJLgo9808dPf0TppvDHmSBU7hMkqMR2JZ2tC9fI/ S9xEPrtfGvuUXfYNZFC1ms713ViAHWDrgFMte2mVwmHl4AYGUbcJscyZ/eYnrGlq lAY8x3yXvIKeJOBN7L28PBs+PrsqW/q1Lpaq9ZQN83v8R20D3BJoT6XeRlgoAe2b 8KYipoedQUh04le3c0Aq3KKHvAPcT4rV90lpXIZagw76l12E8eVqycKxTB7CfN3E LjkROKZb+RR+XCmzDrFgiBCA4IdKTcZdsobnFxqZhgaQDhTbmNbPX59WxMKdltwd ZeJQCi/7HgcqcNDcN+7r47eknFICGejn8bY1RpMYbmo/PDrsyGUyHlwyhWYuLwBy cL1+2kVRjZ7suWA8EwSQzYYkN20JHnTEwZKfsje+zD9f3ZNB20FhbWXTHs90udmy dIApfBTLvZQyJTSJjqz8 =8wIu -----END PGP SIGNATURE----- --3ANnFPtge8J6P3KP2dArDDUwgF9vrI6vs--