> > >Whenever you change an _external_ record, add a server etc
> > etc you need to
> > >update two DNS servers. That's life.
> >
> > You shouldn't even need to do this, if the internal DNS is
> set up to
> > forward (external/public) queries to the external DNS.
> >
>
> That's true only if you have different domains for in and out (eg
> xyzcorp-in.com and xyzcorp.com).
>
> "Normal" split DNS uses the same zone name. When you look up
> www.xyzcorp.com, the internal server is authoritative for
> that zone and will
> NOT forward the query.
Exactly! That's the problem I was wondering about. The internal
server will not forward if it is the same domain (and both are
master).
A helpful list member suggested I just run the private DNS server
as a secondary for the domain and disable zone transfers. That way
it should forward everything it doesn't know, including in the same
domain... I hope! :)
Thanks
Carl
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
