Reverse DNS delegation problem
Barry Margolin
barmar at alum.mit.edu
Tue Jun 29 13:08:27 UTC 2004
In article <cbrnfr$jpl$1 at sf1.isc.org>, phn at icke-reklam.ipsec.nu wrote:
> Chittaranjan Mandal <Chittaranjan.Mandal at iitkgp.ac.in> wrote:
> > [Reply to message from "Kevin Darcy" on Tuesday 29 Jun 2004 3:59 am]
>
> >> Do you have forwarding enabled within the part of your named.conf you
> >> didn't show? Forwarding would override delegation. In order to cancel
> >> forwarding for the 10.in-addr.arpa hierarchy, you'd need to add
> >> "forwarders { };" to the apex zone definition.
>
> > Thanks, your solution worked. But I would like queries that are not ser=
> ved by
> > my local name server to be actually forwarded to some other name server.
> > How can that be done? Note that this particular nameserver is in a loca=
> l subnet
> > and cannot directly communicate with the external world.
>
> Why do you want to increase your vulnerability by forwarding ? Does
> it give you any beneifit ?
Huh? Didn't you see where he said "cannot directly communicate with the
external world"? Forwarding is necessary to go through another server
that the firewall allows to get out.
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
More information about the bind-users
mailing list