Wildcard on whole DNS

besnard michel mbesnard at gmail.com
Mon Oct 23 20:12:31 UTC 2006 

hi,

do you thinks i can have my regular zones + wildcard zone ?

best regards,
Michel

2006/10/9, Mark Andrews <Mark_Andrews at isc.org>:
>
> > > Hey All,
> > >
> > >     This might sound like a silly question. but here goes.
> > >
> > >     I want to setup a DNS server which when queried for ANY domain, will
> > > respond with a specific IP address.
> > >
> > >     This is so that customers who are overdue get a website explaining
> > > why they are not able to reach the internet.  Their IP's are changed (and
> > > DNS) and they can't go anywhere except in our local network.
> > >
> > > .Skeeve
> >
> >       Why don't you just intercept all their HTTP traffic and
> >       block everything else.  Mark all the returned pages as
> >       not cachable.
> >
> >       This is less likely to break automated traffic.
> >
> >       Otherwise:
> >
> >       . 0 SOA . . 0 0 0 0 0
> >       . 0 NS .
> >       *. 0 A 1.2.3.4
> >       *. 0 AAAA 2002::1
> >
> >       and *only* have a http server on the addresses.  You won't
> >       want to be accused of intecepting email, etc.
>
>        You will also, almost certainly, want to enable minimal responses.
>        You could also add address records for the root.
>
> options {
>        minimal-responses yes;
>        empty-zones-enable no;  // 9.4 onwards
> };
>
> zone "." {
>        type master;
>        file "overdue";
> };
>
> overdue:
> . 0 SOA . . 0 0 0 0 0
> . 0 NS .
> . 0 A 1.2.3.4
> . 0 AAAA 2002::1
> *. 0 A 1.2.3.4
> *. 0 AAAA 2002::1
>
> > > _______________________________________________________
> > > Skeeve Stevens, RHCE     Email: skeeve at skeeve.org
> > > Website: www.skeeve.org  - Telephone: (0414) 753 383
> > > skype://skeeve
> > > Address: P.O Box 1035, Epping, NSW, 1710, Australia
> > >
> > > eIntellego - skeeve at eintellego.net - www.eintellego.net
> > > _______________________________________________________
> > > I'm a groove licked love child king of the verse
> > > Si vis pacem, para bellum
> > >
> > >
> > >
> > >
> > >
> > >
> > --
> > ISC Training!  October 16-20, 2006, in the San Francisco Bay Area,
> > covering topics from DNS to DHCP.  Email training at isc.org.
> > --
> > Mark Andrews, ISC
> > 1 Seymour St., Dundas Valley, NSW 2117, Australia
> > PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org
> >
> >
> --
> ISC Training!  October 16-20, 2006, in the San Francisco Bay Area,
> covering topics from DNS to DHCP.  Email training at isc.org.
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org
>
>
>


-- 
Cdt,
Michel BESNARD

http://blog.yumanet.com
http://blog.mfl42.net
http://sweetlili.yumanet.com

More information about the bind-users mailing list