Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 22 May 2001 18:54:07 +0100
From:      Mark Drayton <mark.drayton@4thwave.co.uk>
To:        freebsd-isp@freebsd.org
Subject:   Resolving DNS setup
Message-ID:  <20010522185407.A30604@tethys.valhalla.net>
next in thread | raw e-mail | index | archive | help 
Hi

Recently I set up a caching only nameserver at work which all our office
machines, servers and dialup customers use for resolution instead of our
two authoritative nameservers. A few days ago our internet connection
went down, meaning that the caching nameserver couldn't get to the root
nameservers and therefore couldn't resolve anything it didn't have
cached. As it couldn't get to the root servers it also couldn't answer
any queries for zones that we are authoritative for (even though the
authoritative namesevers are on the same network).

The end result of this was that customers who dialled into us couldn't
see our site or pick up their mail as the caching nameserver wouldn't
resolve the hostnames of the web/mail servers.

Obviously this is a Bad Thing and I'd like to sort it out, especially
as I'm going to add another caching nameserver in the near future. What
would be the best way of fixing this? My thoughts so far are:

a) make the caching nameserver a slave for all the domains held on our
authoritative nameservers

b) define all our domains as stub zones on the caching nameserver

Another problem with the caching nameserver is it's very slow to pick up
*new* RRs on our authoritative servers (I know I need to wait for the
TTL to expire on changed records). Will the caching nameserver wait for
the TTL of the zone to expire before it asks the authoritative servers,
*even when it has no cached answer to the query*?

named.conf:

options {
        directory "/etc/namedb";
        allow-query {
                127.0.0.0/8;
                195.26.32.0/19;
                212.158.59.0/24;
        };
        statistics-interval 5;
        dump-file "s/named_dump.db";
};

logging {
        channel stats {
                file "/var/log/named.stats";
        };

        channel debugfile {
                file "/var/log/named.debug";
                print-category yes;
        };

        category statistics { stats; };
};

zone "." {
        type hint;
        file "named.root";
};

zone "0.0.127.IN-ADDR.ARPA" {
        type master;
        file "localhost.rev";
};

Cheers,

-- 

Mark Drayton

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010522185407.A30604>