On Thu, Apr 17, 2008 at 09:05:33 +0545, Howard Lowndes wrote: Howard,
> I don't want to start fiddling with dhclient, nor with /etc/resolv.conf, > but I would like to get at least some of the internal zone presented to If you don't want to use resolvconf to sort it out (and I'm not recommending you do, just noting it as an option), here are a couple of solutions I've used with openvpn: If you only want localhost to be able to resolve the internal zone, do a zone transfer from the remote name server after the vpn comes up and populate /etc/hosts. When the vpn goes down (or the machine is rebooted), remove the extra hostnames from /etc/hosts. If you want other hosts on the LAN to see the internal zone, have a second bind config file (with /etc/bind9/named.conf.local as a symlink to the one you're actually using) with the appropriate config to use the remote servers, then switch the symlink and reload bind when the vpn comes up. This requires that you either run the vpn client on the same host as the local name server, or you have some way to signal to the name server that the vpn is up/down. Cheers, John -- Object-[dis]oriented INTERCAL. I have seen the compiler, and it runs. Why do I now feel like the hero in one of those H. P. Lovecraft stories who has seen something no mortal man was ever meant to see, and who is marginally less sane thereafter? -- Charlie Stross -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
