Bind 9.9.1 forward zone local
Hello. I have a problem with forwarding zone local to ISP resolvers.
My config is:
options {
directory /tmp;
disable-empty-zone .;
};
zone . {
type slave;
masters { 192.0.32.132; 193.0.14.129;};
masterfile-format text;
file /etc/bind/db.root;
allow-query { any; };
};
zone local. IN {
type forward;
forwarders {DNS_IP_ISP;};
forward only;
};
zone opendns.com IN {
type forward;
forwarders {208.67.222.222; 208.67.222.220; 208.67.220.220;
208.67.220.222;};
forward only;
};
Forwarding to opendns works, dig +short myip.opendns.com returns ip address
correctly.
Forwarding to local doesnt works, dig return nxdomain.
Commenting zone . leads to correct work of zone local
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Bind 9.9.1 forward zone local
I would imagine your issue is a lack of an NS delegation in the root zone
you are slaving. If you load a parent and then try to forward a child of
that parent you must have a delegation in the parent. The delegation
doesn't have to match the forwarders but it must exist.
On Mar 25, 2014 1:57 PM, Андрей Ветров proukorn...@gmail.com wrote:
Hello. I have a problem with forwarding zone local to ISP resolvers.
My config is:
options {
directory /tmp;
disable-empty-zone .;
};
zone . {
type slave;
masters { 192.0.32.132; 193.0.14.129;};
masterfile-format text;
file /etc/bind/db.root;
allow-query { any; };
};
zone local. IN {
type forward;
forwarders {DNS_IP_ISP;};
forward only;
};
zone opendns.com IN {
type forward;
forwarders {208.67.222.222; 208.67.222.220; 208.67.220.220;
208.67.220.222;};
forward only;
};
Forwarding to opendns works, dig +short myip.opendns.com returns ip
address correctly.
Forwarding to local doesnt works, dig return nxdomain.
Commenting zone . leads to correct work of zone local
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Bind 9.9.1 forward zone local
What happens if you remove the . after local?
On 03/25/14 12:57, Андрей Ветров wrote:
Hello. I have a problem with forwarding zone local to ISP resolvers.
My config is:
options {
directory /tmp;
disable-empty-zone .;
};
zone . {
type slave;
masters { 192.0.32.132; 193.0.14.129;};
masterfile-format text;
file /etc/bind/db.root;
allow-query { any; };
};
zone local. IN {
type forward;
forwarders {DNS_IP_ISP;};
forward only;
};
zone opendns.com http://opendns.com IN {
type forward;
forwarders {208.67.222.222; 208.67.222.220; 208.67.220.220;
208.67.220.222;};
forward only;
};
Forwarding to opendns works, dig +short myip.opendns.com
http://myip.opendns.com returns ip address correctly.
Forwarding to local doesnt works, dig return nxdomain.
Commenting zone . leads to correct work of zone local
--
Who: Lawrence K. Chen, P.Eng. - W0LKC - Sr. Unix Systems Administrator
For: Enterprise Server Technologies (EST) -- SafeZone Ally
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Bind 9.9.1 forward zone local
nothing, its correct name
2014-03-26 1:01 GMT+04:00 Lawrence K. Chen, P.Eng. lkc...@ksu.edu:
What happens if you remove the . after local?
On 03/25/14 12:57, Андрей Ветров wrote:
Hello. I have a problem with forwarding zone local to ISP resolvers.
My config is:
options {
directory /tmp;
disable-empty-zone .;
};
zone . {
type slave;
masters { 192.0.32.132; 193.0.14.129;};
masterfile-format text;
file /etc/bind/db.root;
allow-query { any; };
};
zone local. IN {
type forward;
forwarders {DNS_IP_ISP;};
forward only;
};
zone opendns.com http://opendns.com IN {
type forward;
forwarders {208.67.222.222; 208.67.222.220; 208.67.220.220;
208.67.220.222;};
forward only;
};
Forwarding to opendns works, dig +short myip.opendns.com
http://myip.opendns.com returns ip address correctly.
Forwarding to local doesnt works, dig return nxdomain.
Commenting zone . leads to correct work of zone local
--
Who: Lawrence K. Chen, P.Eng. - W0LKC - Sr. Unix Systems Administrator
For: Enterprise Server Technologies (EST) -- SafeZone Ally
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Bind 9.9.1 forward zone local
.local is reserved for mDNS. I would say stop trying to use .local in the DNS. Mark -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Bind 9.9.1 forward zone local
On 2014-03-25 16:16, Mark Andrews wrote: .local is reserved for mDNS. I would say stop trying to use .local in the DNS. While true, I don't think it will help this particular issue. As I understand it, BIND knows, by knowledge of being a root server, that local. can't possibly exist, and so that knowledge overrides the configuration of the forwarder. I ran into similar setting up a fake/virtual TLD for wrbldnsd, which I was able to resolve by moving it downstream to dnsbl.hireahit.net. instead of just dnsbl. Nearly. Until I hit one broken application that wouldn't work with this configuration. Switching BIND to use hints instead of acting as a root seems to work around this (broken) local configuration. -- Dave Warren http://www.hireahit.com/ http://ca.linkedin.com/in/davejwarren ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
