Partial zone authority

[Greg Chavez]

On 7/21/05, Barry Margolin <barmar at alum.mit.edu> wrote:
> In article <dbolmh$2uc4$1 at sf1.isc.org>,
>  "greg.chavez at gmail.com" <greg.chavez at gmail.com> wrote:
>=20
> > We have just opened up a private T1 line to a sister organization with
> > a different domain, lemon.gov.  I have been asked to set up a copy of
> > their domain on our internal name servers to resolve one A record -
> > cas.lemon.gov - to an IP which will be accessed over the T1.  Never
> > mind why, they just want it done.  The Internet name servers for
> > lemon.gov do not serve this record - it is entirely internal.  So I
> > have been asked to either replicate the lemon.gov domain internally ,
> > pretend to be authoritative for it, and add the A record for "cas"; or
> > find a way to serve a record for "cas" and forward all other queries to
> > the Internet.
> >
> > It seems to be that the latter is not possible.  You can't be partially
> > authoritative, can you?
>=20
> You can be authoritative for the cas.lemon.gov domain.
>=20
> zone "cas.lemon.gov" {
>   type master;
>   ...
> };
>=20
> This has no effect on the rest of the lemon.gov domain, which will be
> resolved normally.  This is no different from the fact that you can be
> authoritative for banana.gov without affecting the rest of the gov
> domain.

Ah, good perpsective.  Using a subdomain didn't even occur to me.

Now, cas.lemon.gov is a host, as far as I know.  But that's okay,
because if I get what you're saying, I just add authority for a
cas.lemon.gov zone, then create an A record for "@" in the cas zone
file and that's it?  Groovy, man.  Thanks.

--Greg Chavez