Merging dynamic DNS data with existing authoritative static data
Kevin Darcy
kcd at daimlerchrysler.com
Sat Sep 23 03:10:06 UTC 2000
Wouldn't it have been better to just hack named-xfer to strip out the
WINS crap, so that the BIND server could be a regular slave to the NT box?
You really need to think about upgrading your BIND; 4.9.x is ancient and
subject to exploits. And isn't Microsoft even steering people away from
WINS these days?
- Kevin
Greg Bailey wrote:
> I'm sure others have faced this problem, but we have BIND 4.9.X on Unix
> serving external DNS data, and WinNT 4.X DNS serving our internal
> network, as it contains DHCP/WINS stuff that the outside doesn't need
> nor want to see.
>
> The problem occurs with the duplication of data for hosts that both the
> outside world and our internal people want access to. I have a
> work-around for the reverse mapping by using a bunch of NS records for
> each node that points to the internal DNS server. In that way,
> DHCP-assigned addresses can be resolved.
>
> The problem is with the forward lookups. An obvious solution would be
> to create a subdomain for the dynamically assigned hosts, but that
> breaks too many things here to be feasible. Instead, I've created a
> zone file that uses a wildcard with a NS record to the internal name
> server. This worked until the BIND nameserver tried to store the
> retrieved data in its cache and wouldn't because it doesn't allow
> updates to its authoritative domain.
>
> My "solution" was to hack the db_update.c code to allow the cache update
> to happen, so now I can hold the bulk of the data on the BIND
> nameserver, with only the dynamic data on the WinNT DNS server. My
> question is: if this is really a common problem, surely someone's
> figured out how to either: 1) do WINS lookups from a UNIX-based host;
> and/or 2) use a different configuration than what I've described above.
>
> If anyone's interested in the patch (only a couple of lines), I'd be
> happy to e-mail them. I'd also welcome any comments on the setup
> described above.
>
> Thanks,
> Greg Bailey
> gbailey at i-link.net
More information about the bind-users
mailing list