/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
What you are talking about is "split" DNS. When setting up
split DNS, there are two methods:
1) Newer versions of Bind support split "views" that allow
one named daemon to service multiple interfaces, zones, etc.
2) The more secure mechanism is a CHROOTed named daemon. Here,
you have one named daemon running on each interface. If
a hostile user breaks in, they only have access to the jail
environment which is extremely limited.
TrinityOS has full documentation for 2), Split and CHROOTed
DNS. To have this running without your own daemon, edit
the "external" /etc/named.conf and only have the "." zone
in there.
Thats it!
Check out Section 24
http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#trinityos
--David
.----------------------------------------------------------------------------.
| David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
