crazy me or bind
Agustín Dixan Díaz Corrales
agustin.dixan at esilt.azcuba.cu
Fri Nov 22 18:53:10 UTC 2013
nobody here?
i have a problem with my bind config, there is the graphical situation:
192.168.100.x DMZ
192.168.1.x LAN1
192.168.2.x LAN2 (virtual)
172.40.y.z INTERNET
172.16.x.1 dns1 ISP
172.16.x.2 dns2 ISP
my gateway-firewall-dns server have 3 network config, conected into 3
switches, one for network granted a correct lan segmentation:
172.40.x.1 (eth0)- external (switch 1 with modem router connected)
192.168.100.1 (eth1) - DMZ (switch 2)
192.168.1.1 (eth2) - LAN 1(switch 3)
192.168.2.1 - (eth2:1) - VIRTUAL LAN 2 (switch 3)
so when i make a dig from gateway (192.168.100.1) resolv correctly the
consult...is no there from other server or pc into the same network
range, for example proxy (192.168.100.2) and zimbra (192.168.100.2) dont
resolv dns with dig.
From any pc into the range 192.168.1.x dig resolve external dns ok, but
not from 192.168.2.x lan, note: this two network are in the same switch.
look in into /var/log/syslog |grep named i see the consult failure.
iptables udp and tpc 53 opened
nated ISP servers-dns ip
added resolv.conf in my firewall-dns the 2 ISP servers-dns ips
declared in name.conf.options forwarders IPS servers-dns ips
is a simple bind config but i can detect where is the problem, of course
someting are wrong but i cant detect....
sorry my english and thanks by read this
More information about the bind-users
mailing list