Re: Help with the subzone problem
But F5's 3DNS can't setup the NS records for games.abc.com. That means, when query to: dig games.abc.com ns @ns1.example.com get nothing. I'm not familiar with F5's 3DNS, but in general I'd expect the query you made above to work. Do you get _any_ response from ns1.example.com? If you query it directly with dig, asking for www.games.abc.com, or asking for the SOA record of games.abc.com ? If you can't get an answer out of that F5 thingie, I'd at least start by looking there. If you could give us the real names, we could also check the delegation of the domain, and we could check that we got sensible answers from your authoritative nameservers for both abc.com and games.abc.com Regards Eivind Olsen ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Help with the subzone problem
On 25.11.10 10:10, Tech W. wrote: We have a zone in Bind, for example, abc.com We designate a subzone of it to another dns server, for eaxmple, F5's 3DNS. The corresponding RR in Bind is: games.abc.com. IN NS 3600 ns1.example.com. games.abc.com. IN NS 3600 ns2.example.com. so, there are glue NS records in abc.com for games.abc.com, right? But F5's 3DNS can't setup the NS records for games.abc.com. That means, when query to: dig games.abc.com ns @ns1.example.com are the NS records for games.abc.com also in the games.abc.com ? They must be there, games.abc.com will not fetch glue records from abc.com. And in fact, since games.abc.com is authoritative for games.abc.com (of course... those in abc.com are JUST GLUE), there are probably no NS records for games.abc.com. get nothing. try dig any games.abc.com @ns1.example.com -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. The early bird may get the worm, but the second mouse gets the cheese. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Help with the subzone problem
\ On Thu, Nov 25, 2010 at 2:50 AM, Matus UHLAR - fantomas uh...@fantomas.skwrote: On 25.11.10 10:10, Tech W. wrote: We have a zone in Bind, for example, abc.com We designate a subzone of it to another dns server, for eaxmple, F5's 3DNS. The corresponding RR in Bind is: games.abc.com. IN NS 3600 ns1.example.com. games.abc.com. IN NS 3600 ns2.example.com. so, there are glue NS records in abc.com for games.abc.com, right? But F5's 3DNS can't setup the NS records for games.abc.com. That means, when query to: dig games.abc.com ns @ns1.example.com are the NS records for games.abc.com also in the games.abc.com ? They must be there, games.abc.com will not fetch glue records from abc.com . And in fact, since games.abc.com is authoritative for games.abc.com (of course... those in abc.com are JUST GLUE), there are probably no NS records for games.abc.com. get nothing. try dig any games.abc.com @ns1.example.com There may be a simpler answer. If your NS resource record really looks like what was posted, it is in error and the zone shouldn't even load. Check your logs for this when you start named. I suspect that the 3600 is an explicit TTL for the record, but this value shouldn't be part of the resource record data, the part following the RR type. The record should look more like: games.abc.com. 3600 IN NS ns1.example.com. games.abc.com. 3600 IN NS ns2.example.com. Where the explicit TTL follows the domain name on the left hand side. Run your zone file through named-checkzone to look for problems with your data. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
