to route specific dns query to specific dns server
Lyle Giese
lyle at lcrcomputer.net
Wed Dec 29 13:39:01 UTC 2010
May I suggest the book DNS and Bind 5th edition.
Availible from Amazon:
http://www.amazon.com/DNS-BIND-5th-Cricket-Liu/dp/0596100574/ref=sr_1_1?ie=UTF8&qid=1293629633&sr=8-1
All of these things can be done. Do some reading!
Yes you setup forwarding only for the microsoft domain name.
And yes you can setup BIND to not answer questions from the Internet
about your Microsoft domain, but in my opinion that is not necessary.
You do want to disable recursive queries from the Internet and there are
no pointers out on the Internet pointing your microsoft domain to you
BIND server, so noone outside your internal network will know about the
microsoft domain.
The book has examples plus syntax and examples that will cover the rest
of your questions.
Lyle Giese
LCR Computer Services, Inc.
Riccardo Castellani wrote:
> >Hopefully the microsoft domain is a name that is not availible on the
> >internet, like mymsdomain.local. Then your microsoft server is known as
> >domaincontroller.mymsdomain.local.
> Of course !
>
>
> >In that case you would setup a forwarder in BIND for mymsdomain.local
> that
> >points to the microsoft dns servers.
>
> Ok, but I'd like understanding if:
> 1- for every query to BIND there is always a forwarding to microsoft dns
> servers or if there is only a forwarding for queries containing
> 'mymsdomain.local' domain ?
> 2- If I configure BIND how you suggest me, can I not permit Internet
> queries
> for ''mymsdomain.local' ?
> 3- Can you show me sample example of forwarding configure file for
> specific
> domain, please ?
>
>
> ----- Original Message -----
> *From:* Lyle Giese <mailto:lyle at lcrcomputer.net>
> *To:* Riccardo Castellani <mailto:ric.castellani at alice.it>
> *Sent:* Tuesday, December 28, 2010 11:12 PM
> *Subject:* Re: to route specific dns query to specific dns server
>
> Riccardo Castellani wrote:
>> I'm using Bind9 for my name server (SERVER EXT) and to give name
>> resolution for who access from Internet to my domain (e.g. to
>> access to my Web site or to write to my email addresses).
>> My domain is example.com:
>>
>> www.Example.com <http://www.Example.com>
>> test.host at example.com <mailto:test.host at example.com>
>>
>> This dns server maps only my pubblic addresses.
>> This server has 2 nics: internal + external ip address.
>> Some internal servers, as proxy or mail servers, send dns
>> requests to this dns server to solve names.
>> I have also internal MS domain (dns server is SERVER INT) which
>> is different from the other, it's created by Domain Controllers +
>> AD (activedirectory.com) and it's used to map machines into
>> internal network.
>>
>> Now I my email server or proxy server (which are in internal
>> network) need to synchronize time so they have to use my internal
>> NTP server; these Linux machines use 'SERVER EXT' in
>> /etc/resolv.conf, so how I can indicate to send request for
>> specific internal name (ntp.activedirectory.com) to dns server INT ?
>> I could insert it inot /etc/hosts but it's not dnssssss service !!!
>>
>>
> Hopefully the microsoft domain is a name that is not availible on
> the internet, like mymsdomain.local. Then your microsoft server
> is known as domaincontroller.mymsdomain.local.
>
> In that case you would setup a forwarder in BIND for
> mymsdomain.local that points to the microsoft dns servers. Then
> when the linux boxes want domaincontroller.mymsdomain.local, your
> Bind name server will ask the microsoft dns servers for the answer.
>
> Lyle Giese
> LCR Computer Services, Inc.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20101229/b765f23e/attachment.html>
More information about the bind-users
mailing list