Forwarding goes amiss?
Kevin Darcy
kcd at daimlerchrysler.com
Tue Nov 25 00:41:12 UTC 2003
Mark wrote:
>Using BIND 8.4.1-REL, I'd like to add RBL style zone, like so:
>
>zone "dynablock.my-domain.info" {
> type forward;
> forward first;
> forwarders {
> 127.0.0.4;
> };
>};
>
>At 127.0.0.4, rbldnsd is listening (on a ifconfig alias of lo0), and
>*working, as a dig @127.0.0.4 gives the proper responses. In the options
>section I have this:
>
>query-source address 192.168.1/24 port 53;
>allow-transfer { can_axfr; };
>allow-query { localhost; };
>allow-recursion { localhost; };
>listen-on {
> 192.168.1/24;
> 127.0.0.1;
>};
>
>So, "dig @127.0.0.4 177.64.161.195.dynablock.my-domain.info" gives me the
>right result:
>
>;; ANSWER SECTION:
>177.64.161.195.dynablock.my-domain.info. 35M IN A 127.0.0.2
>
>But "dig 177.64.161.195.dynablock.my-domain.info" does NOT:
>
>;; AUTHORITY SECTION:
>my-domain.info. 1D IN SOA ns1.asarian-host.net. ...
>
>It seems BIND is not doing the forward. Can someone please tell me what I'm
>doing wrong? I am very close; I feel it. :)
>
1. Is the first "nameserver" entry in your /etc/resolv.conf pointed at
one of the addresses on which your local nameserver is listening?
2. Is dynablock.my-domain.info delegated? I suspect it is not. I seem to
recall that BIND 8 will only forward for a *delegated* subdomain, if the
nameserver is authoritative for anything above it in the hierarchy...
- Kevin
More information about the bind-users
mailing list