Real tricky setup Q: different name servers for 3rd level domain: possible? how??
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Wed Dec 18 22:30:01 UTC 2002
>
> Hi,
>
> yes it is possible. The following way:
>
>
> $TTL 86400
> @ IN SOA NAMESERVER.DE. NAMESERVER at NAMESERVER.DE. (
Please use the correct format for entering email address in the
RNAME field (NAMESERVER.NAMESERVER.DE.).
> 2002121601 ;
> 28800 ;
> 7200 ;
> 604800 ;
> 86400 ;
> )
>
> IN NS NS1.NAMESERVER.DE.
> IN NS NS2.NAMESERVER.DE.
>
> IN MX 10 MAILSERVER.DE.
> IN MX 20 MAILSERVER2.DE.
>
> IN A 123.456.789.000
> www IN A 123.456.789.000
>
> test1 IN NS NS3.NAMESERVER.DE.
> IN NS NS4.NAMESERVER.DE.
>
> IN MX 10 MAILSERVER3.DE.
> IN MX 20 MAILSERVER4.DE.
>
> proxy IN NS NS5.NAMESERVER.DE.
> IN NS NS6.NAMESERVER.DE.
>
> and in the zone-file for test1 you can define the next test.test1 with other
> ns..
>
>
> But you have to be careful - Because the root-ns only know the nameservers
> of the second-level domain. only the nameservers for the sec.level-domain
> know the ones for the third - the ns of the third for the 4th and so on. If
> one is out of work all the subdomains under this server do not work!
>
> Mathias
>
>
>
>
>
>
> ~tilde wrote:
>
> > Hi All,
> >
> > I want to use different name servers on my 3rd, 4th, 5th, (and so on)
> > level domains than the ones on my 2nd level.
> >
> > So, for example, I might have name servers A and B on "example.com" but I
> > want to use name servers C and D for "test.example.com" and
> > "long.test.example.com" and in fact, "*.example.com" where "*" can have as
> > many dots as I like.
> >
> > Is this possible; and how?
> >
> > Here's a more detailed example
> >
> > Example: securitymarked.com (2nd level domain)
> > => has it's own name servers
> >
> > Example: rn.securitymarked.com (3rd level domain)
> > => uses 2 different name servers to "securitymarked.com"
> >
> > Also: *.rn.securitymarked.com - refers to name servers of
> > "rn.securitymarked.com" for resolution.
> >
> > I'm guessing this might work? Do you think so? Got any idea how to
> > configure the securitymarked.com name servers (A and B) to *return* this
> > (invented - not real) response? :-
> >
> >
> > # dig @securitymarked.com test.rn.securitymarked.com mx
> >
> > ; <<>> DiG 9.2.1 <<>> @ns.securitymarked.com test.rn.securitymarked.com mx
> > ;; global options: printcmd
> > ;; Got answer:
> > ;; ->>>HEADER<<- opcode: QUERY, status: NOERROR, id: 61329
> > ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 0
> >
> > ;; QUESTION SECTION:
> > ;test.rn.securitymarked.com. IN MX
> >
> > ;; ANSWER SECTION:
> > test.rn.securitymarked.com. 43200 IN CNAME
> > rn.securitymarked.com.
> >
> > ;; AUTHORITY SECTION:
> > rn.securitymarked.com. 43200 IN SOA the.owneris.com.
> > hostmaster.rn.securitymarked.com. 2002121600 3600 900 1209600
> > 43200
> > rn.securitymarked.com. 43200 IN NS the.owneris.com.
> > rn.securitymarked.com. 43200 IN NS
> > othernameserver.com.
> >
> > ;; Query time: 5 msec
> > ;; SERVER: 210.158.198.2#53(securitymarked.com)
> > ;; WHEN: Mon Dec 16 23:50:35 2002
> > ;; MSG SIZE rcvd: 117
>
>
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-users
mailing list