(SOLVED) delegating NS control of subdomain to another BIND
Kevin Darcy
kcd at daimlerchrysler.com
Mon Jul 23 23:55:40 UTC 2001
If you *must* use forwarding, then you can cancel it selectively using
"forwarders { }" in the zone definition at the apex of whatever part of the
namespace you don't want to be forwarded, e.g. "forwarders { }" in the
madduck.net zone definition cancels forwarding for madduck.net and
everything beneath it (unless explicitly re-instated via the use of another
"forwarders { x.x.x.x; };" clause in a descendant zone).
But, unless your Internet connectivity is limited or you can derive a
consistent, reliable performance benefit from it, I wouldn't use forwarding
at all. Given your statements about how overloaded the DTAG servers are, I
doubt you're getting any performance benefit and forwarding is probably a
waste.
Note that if you're using forwarding purely for performance reasons, then
use "forward first" instead of "forward only". This will allow your
nameserver to fall back to iterative resolution if the forwarders are
unavailable (obviously this isn't a viable option if you're using forwarding
to get around some sort of connectivity issue).
- Kevin
Martin F. Krafft wrote:
> also sprach Kevin Darcy (on Mon, 23 Jul 2001 05:54:19PM -0400):
> > Did you try adding "forwarders { }" to the madduck.net zone definition?
>
> thanks to Kevin from the comp.protocols.dns.bind newsgroup, i found
> the problem. i had six forwarders configured on my main DNS server,
> which i thought are necessary to have with a DNS server that serves a
> local zone, but otherwise caches queries from the internet. however,
> forwarders in BIND seem to be pretty much what SMTP relays are - you
> can use them, but if you don't, then any smart software like postfix
> or bind (i.e. not micro$oft) will go and do the job themselves.
>
> now, without the forwarders line, the subdomain is correctly
> delegated, and while my DNS queries don't go through my provider's NS
> servers anymore, it still works.
>
> i'd still like to know if you can't configure forwarding so as to
> allow subdomain delegations... usage of the german telekom nameservers
> will surely save time and traffic, as they are heavily used...
More information about the bind-users
mailing list