Trouble with bind 8.2.2-P5
Kevin Darcy
kcd at daimlerchrysler.com
Fri Aug 25 21:22:47 UTC 2000
If your forwarding is *globally* configured, i.e. in the options statement,
then the root-zone queries should be going through your forwarder, not
directly to the root servers. And for those root-zone queries to work, the
forwarder needs to allow recursion to your server. Is that how you have
things configured? You can't stop named from doing root-zone queries, since
it always wants to get "good" root-zone data in its cache (the "hints" file
is just that: *hints* as to the contents of the root zone, it's not
considered a valid substitute for *real* root-zone data).
- Kevin
Thierry DEPETRIS wrote:
> I have an internal DNS who manage my zone elf-antar.fr. This DNS is
> behind a Firewall and is configured to forward
> requests to another Bind that is on Internet. This external Bind also
> manage the zone elf-antar.fr but on Internet.
>
> The Internal DNS has some stub, slave and forward link to others
> internal zones.
>
> All the requests works fine (on all my internal zones and on external
> zones) but when I look to the tcp/ip traffic,
> I see that my internal DNS try to contact all the root-servers.net on
> Internet.
> The firewall block the requests so the dns retries permanently.
>
> I think that with the use of this release of Bind and with the forward
> only option there's no problem.
> Do you know if this problem is a bug ? If not do you know a parameter to
>
> turn on to stop the requests ?
>
> Thanks for your response.
More information about the bind-users
mailing list