delegation a zone to another nameserver
Kevin Darcy
kcd at daimlerchrysler.com
Sat Oct 14 00:24:29 UTC 2000
Mark.Andrews at nominum.com wrote:
> >
> >
> > hello,
> >
> > i'm running 'bind-8.2.2_P3-0.5.2' and 'bind-8.2.2_P3-1'
> > for linux redhat on the two dns-servers concerned.
> >
> > i've got the following problem:
> >
> > my machine is 'edvvie1.debis.edvg.co.at' and i'm delegating
> > everything under net '10.95.x.x' to the server 'ns1.ams.or.at'
> > using the wildcard '*'.
>
> This is illegal.
Illegal or just ineffectual? If it really is illegal, perhaps BIND should reject
the zone. Even BIND 9.0.0 appears to accept this construct...
Note to Wilhelm: the reason it doesn't work is because wildcards don't match
across zone boundaries. Since the whole purpose of a delegation NS is to say "this
is outside of my zone", then a wildcard delegation is doomed to fail. I clarified
this in my own mind by reading RFC 1034 Section 4.3.3 subsequent to my previous
response to you, so please just ignore what I said before about this possibly
being a BIND bug. (I really ought to print out that section of the RFC and stick
it on my cube wall until I have it memorized, since wildcards always seem to trip
me up.)
- Kevin
More information about the bind-users
mailing list