NS record question

Bob Vance bobvance at alumni.caltech.edu
Mon Mar 26 17:07:19 UTC 2001 

I had noticed that creating a sub-zone on the same server without
delegation worked in the simple environment of my home network with only
one nameserver.  I later went ahead and did the delegation to itself
when I realized my omission, but it got me to wondering about the same
thing.

So I'm also trying to figure out exactly where it breaks down.
A secondary server should be authoritative and he knows how to get zone
transfers done, so he should be able to answer OK without NS records.

Another server somewhere trying to get sub-zone.foo.com would be
referred to the nameserver(s) for foo.com. -- but then he (or they)
would know that they are authoritative for sub-zone.foo.com and should
answer.

Right?

I guess without the NS records there would be a NOTIFY issue.
What other issues am I missing.


-------------------------------------------------
Tks        | <mailto:BVance at sbm.com>
BV         | <mailto:BobVance at alumni.caltech.edu>
Sr. Technical Consultant,  SBM, A Gates/Arrow Co.
Vox 770-623-3430           11455 Lakefield Dr.
Fax 770-623-3429           Duluth, GA 30097-1511
=================================================





-----Original Message-----
From: bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org]On
Behalf Of Roy Arends
Sent: Monday, March 26, 2001 7:16 AM
To: HAG.Keijzer at mindef.nl
Cc: bind-users at isc.org
Subject: Re: NS record question



On Mon, 26 Mar 2001 HAG.Keijzer at mindef.nl wrote:

> Hi there
>
> Should I have NS records for a delegated zone even if the delegation
is on
> the same nameserver? (needless to say it works fine without them, just
> wondering)
>
> example:
>
> ---
> db.mydomain.com
> @	IN SOA ns.mydomain.com root.mydomain.com ( ... )
> 	IN NS ns.mydomain.com.
> 	IN NS ns1.mydomain.com.
>
> zone1	IN NS ns.mydomain.com.		#	should these lines be here
> or not?
> zone1	IN NS ns2.mydomain.com		#
> ---

Hoi Gody,

In the parent zone, there _has_ to be delegation records for the child
zone in any scenario, they should be identical copy of the NS records in
the childs apex.

Needless to say, you probably have slave servers, not on the same
machine. Whenever a query for the child hits the slave, without
delegation
records the resolver hangs in the blue.

Regards,

Roy Arends
Nominum

More information about the bind-users mailing list