Date: Mon, 20 Feb 2006 20:12:20 +0100 From: bsd <bsd@todoo.biz> To: Robert Slade <bsd@bathnetworks.com> Cc: Liste FreeBSD <freebsd-questions@freebsd.org> Subject: Re: Multiple DNS Message-ID: <B2AC1179-2F0A-4153-9DC9-DBDD6D65C4F4@todoo.biz> In-Reply-To: <1140335174.19974.19.camel@lmail.bathnetworks.co.uk> References: <1140335174.19974.19.camel@lmail.bathnetworks.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Le 19 f=E9vr. 06 =E0 08:46, Robert Slade a =E9crit : > Hi, > > I am looking for some advice. I have a network which is based on a > number of servers running FreeBsd 6.0 serving Win XP work stations. =20= > (yes > I know but..) The network is large enough to use DHCP and DNS for the > internal network, I have setup a DHCP server with a Dynamic DNS =20 > (Bind 9) > on one of the servers. That server is handling the LDAP side of the > domain. > Is your DNS server busy resolving internal requests or external ones ? > There appears to be a fair bit of DNS Traffic which leads to a =20 > secondary > DNS being required to take some of the load as DNS lookup are slow. =20= > The > question I have is should I just setup a cashing DNS on another server > using the primary as a forwarder or even several servers eg the mail > server and the secondary LDAP server, or should I setup a proper > secondary DNS using my ISP as a forwarder with dynamic updates from =20= > the > primary. > You should not forward anything to your ISP. This is probably the =20 main reason for your DNS beeing slow. You should make shure you have well defined your network in your conf =20= (so that you don't resolve queries for outside users...)- I would not advise you to forward any queries to your ISP as this =20 will disable the capacity for your own server to build It's own =20 resolver database and forward all the queries to the ISP (resulting =20 in slow answers)! Normaly you should configure the master and the slave to be =20 authoritative for your internal domains. And configure the master and the slave to resolve ALL the Internet =20 domains for your internal network and none for outside domains. DNS is very tightly related to network... And we don't have any clue =20 for the topology of your Net. SHORT ANSWER : DON'T FORWARD --> BUILD YOUR OWN DATABASE!! > Sorry if this is a bit vague, but I have no experience in this area. > > Rob > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-=20 > unsubscribe@freebsd.org" ________________________________________________ =AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?= =BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7 =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF= =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF Gregober ---> PGP ID --> 0x1BA3C2FD bsd @at@ todoo.biz ________________________________________________ =AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?= =BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7 =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF= =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?B2AC1179-2F0A-4153-9DC9-DBDD6D65C4F4>