question about Subdomain query to Domain
Kevin Darcy
kcd at daimlerchrysler.com
Fri Dec 2 22:57:03 UTC 2005
Do you have an internal root zone, or are you expecting to use the
Internet root zone? If you're expecting to use the Internet root zone,
then you should use the *full* Internet root hints file -- not just a
hints file with a single Internet *root server in it -- and the relevant
nameserver(s) using that hints file should have access to query all of
those root servers directly.*
* - Kevin*
Truong Tan Son wrote:
> Dear Sir,
>
>It can not copy root hints on "root.domain.com" (xx.xx.xx.10) to DNS server on windows ?
>
>On DNS server of Windows, I search "Root Hints" from xx.xx.xx.10 (root.domain.com) to copy, it can not see.
>
>Is anythings wrong with root hint of "domain.com" ?
>
>
>dig @xx.xx.xx.10 domain.com .
>..
>;; connection timed out; no servers could be reached
>
>dig @xx.xx.xx.10 sub.domain.com.
>..
>;; connection timed out; no servers could be reached
>
>dig @yy.yy.yy.20 sub.domain.com . Ok
>
>--------
>ROOT-SERVER: xx.xx.xx.10 (root.domain.com)
>--------
>**/etc/named.conf
>options {
> directory "/var/named";
> allow-query { xx.xx.xx/24;yy.yy.yy/24; 127.0.0/8;};
> allow-transfer { yy.yy.yy.20;};
> transfer-format many-answers;
>};
>zone "." IN {
> type hint;
> file "named.ca";
>};
>zone "domain.com" IN {
> type master;
> file "domain.com.db";
> allow-update { any;};
>};
>
>**/var/named/named.ca
>. 3600000 IN NS A.ROOT-SERVERS.NET.
>A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
>..
>
>**/var/named/domain.com.db
>$TTL 86400;
>$ORIGIN domain.com.
>@ IN SOA root.domain.com. admin.domain.com. (
>1;
>10800;
>3600;
>604800;
>86400;
>);
> IN NS root.domain.com.
>root IN A xx.xx.xx.10
>sub.domain.com. IN NS dns1.sub.domain.com.
>dns1.sub.domain.com. IN A yy.yy.yy.20
>
>
>--------------
>SUB-DOMAIN: yy.yy.yy.20 (dns1.sub.domain.com);
>--------------
>**/etc/named.conf
>options {
> directory "/var/named";
>};
>zone "." IN {
> type hint;
> file "root.local";
>};
>zone "sub.domain.com" IN {
> type master;
> file "/var/named/sub.domain.com.db";
>};
>
>**/var/named/root.local
>. 99999 IN NS root.domain.com.
>root.domain.com. 99999 IN A xx.xx.xx.10
>
>
>
>Best regards,
>---
>
>
>If the .10 server is authoritative for the root zone, that should work.
>
>It's not very redundant, though. I'd recommend, at the very least,
>listing multiple root servers, if they are available. If no others are
>available, I'd recommend making the .20 server a slave to the .10 server
>for the root zone. You might want to make the .20 server a slave for the
>root zone regardless, unless you expect that zone to be changing very
>frequently.
>
>- Kevin
>
>Truong Tan Son wrote:
>
>
>
>>Dear Sir,
>>
>>Following you teach, I insert root hints to yy.yy.yy.20 (dns1.sub.domain.com) to query to parent "domain.com".
>>
>>** /etc/named.conf:
>>options {
>> directory "/var/named";
>>};
>>zone "." IN {
>> type hint;
>> ^^^^^^^
>> file "/var/named/root.hint";
>> ^^^^^^^^^^^^^^^^^
>>};
>>zone "sub.domain.com" IN {
>> type master;
>> file "/var/named/sub.domain.com.db";
>> allow-update { any;};
>>};
>>
>>** /var/named/root.hint
>>. 99999 IN NS root.domain.com.
>>root.domain.com. 99999 IN A xx.xx.xx.10
>>
>>
>>Now, it works.Subdomain can query to parent.
>>
>>
>>It that right ?
>>
>>
>>regards,
>>--
>>
>>
>>
>>
>>
>>
>>>My server currently is running Bind 9, and have trouble to query to root domain server.
>>>
>>>domain name: domain.com
>>>server-ip root.domain.com (xx.xx.xx.10)
>>>
>>>subdomain name: sub.domain.com
>>>sub-server-ip: dns1.sub.domain.com (yy.yy.yy.20)
>>>
>>>
>>>I setting on yy.yy.yy.20 :
>>>
>>>#/etc/named.conf
>>>....
>>>zone "sub.domain.com" IN {
>>> type master;
>>> file "/var/named/sub.domain.com.db";
>>> allow-transfer { xx.xx.xx.10;};
>>>};
>>>
>>>#/var/named/sub.domain.com.db:
>>>....
>>> IN NS dns1.sub.domain.com.
>>> IN NS root.domain.com.
>>>root.domain.com. IN A xx.xx.xx.10
>>>
>>>mail IN A yy.yy.yy.ab
>>>www IN A yy.yy.yy.cd
>>>
>>>
>>>DNS clients using yy.yy.yy.20 (dns1.sub.domain.com) can not query records of xx.xx.xx.10 (root.domain.com).
>>>
>>>Do I have missing on config file above ?
>>>
>>>
>>>
>>>
>>>
>>How is the .20 server set up to resolve queries outside of the
>>sub.domain.com zone? Forwarding, root hints, stub zone(s), what? Perhaps
>>you should have shown us your entire config, so we wouldn't have to go
>>around guessing at such things...
>>
>>- Kevin
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>
>
>
>
>
>
>
More information about the bind-users
mailing list