dns question
phn at icke-reklam.ipsec.nu
phn at icke-reklam.ipsec.nu
Mon Jul 29 16:59:03 UTC 2002
Frimpong, Jacob <JFrimpong at naacpnet.org> wrote:
> I set up a RedHat 7.2 dns server for our LAN. I am able to get to internal
> servers on the LAN. However, when I go to an Internet page like
> "www.yahoo.com" from the DNS machine, I get "host is unreacheable message",
> although I am able to get to the page when I use the IP address of yahoo
> (http://64.58.76.179).
> My configuration file looks like below:
> ----------------------------------------------------------------------------
> ----------------------------------------------------------------------------
> ----------------------------------
> options {
> auth-nxdomain yes;
> directory "/var/named";
> pid-file "/var/run/named.pid";
> query-source address * port 53;
> allow-query { 192.168.0.0/24; 127.0.0.1; };
> listen-on { 192.168.0.11; 127.0.0.1; };
> forwarders { Here I put the IP Address of my ISP;};
> };
> zone "." IN {
> type hint;
> file "named.ca";
> };
> zone "mydomain.com" IN {
> type master;
> file "forward";
> allow-query { any; };
> };
> zone "0.0.127.in-addr.arpa" IN {
> type master;
> allow-query { any; };
> file "named.local";
> };
> zone "0.168.192.in-addr.arpa" IN {
> type master;
> allow-query { any; };
> file "rev-192.168.0";
> };
> ----------------------------------------------------------------------------
> ----------------------------------------------------------------------------
> --------------
> My idea is to forward all unresolved named queries to our ISP. Any help
> would be greatly appreciated.
Unless your ISP has restrictions for dns ( unlikley) you would be better
off NOT forwarding to your ISP.
Removing the line "forwarders { Here I put the IP Address of my ISP;};"
should do this.
> Jacob A. Frimpong
> ................................................
> This message is for use of the intended recipient only. It may contain
> information that is privileged and confidential. If you are not the intended
> recipient, any disclosure, copying, future distribution, or use of this
> communication is prohibited. If you have received this communication in
> error, please advise us by return email, or if you have received this
> communication by fax, advise us by telephone and delete/destroy the document
--
Peter Håkanson
IPSec Sverige ( At Gothenburg Riverside )
Sorry about my e-mail address, but i'm trying to keep spam out,
remove "icke-reklam" if you feel for mailing me. Thanx.
More information about the bind-users
mailing list