pure DNS forwarder
Barry Margolin
barmar at alum.mit.edu
Fri Jan 25 13:24:41 UTC 2008
In article <fnce4r$2c9f$1 at sf1.isc.org>,
Vasiliy Baranov <Vasiliy.Baranov at Sun.COM> wrote:
> Dear BIND gurus,
>
> By any change, is it somehow possible to configure BIND as a pure
> forwarder like this:
>
> options {
> directory "/var/named";
> forwarders { <another server>; };
> forward only;
> };
>
> // END OF /etc/named.conf
>
> and so that it will not clear the AA (Authoritative Answer) flag in
> responses from <another server> that have the AA flag set?
>
> I understand this is odd but anyways?
Sounds like you're asking for a DNS proxy rather than a DNS server.
> Actually, I think even DNS-agnostic redirection would do the trick for
> me, but cannot find a reliable readily available solution for both TCP
> and UDP. Any ideas?
I don't think there's a way to force it to retain the AA flag. If you
just want to prevent it from caching, you could use the max-cache-ttl
and max-ncache-ttl options, setting them very low.
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
*** PLEASE don't copy me on replies, I'll read them in the group ***
More information about the bind-users
mailing list