Non-Internet "named.ca" file root hint.

Truong Tan Son sontt at fcv.fujitsu.com
Mon Jan 9 02:57:48 UTC 2006 

Dear Sir,

Full picture of my system: 

[domain.com] :            on 1 server.     (This server is NOT connected to Internet.)
[sub1.domain.com]:     on 1 server.
[sub2.domain.com]:     on 1 server. 

                                    [domain.com] 
                                  /  ( 1.1.1.1 )     \
                                /                          \
[sub1.domain.com]                       [sub2.domain.com]
  ( 2.2.2.2 )                                          ( 3.3.3.3 )

----

I want clients CAN SEE all records on 3 servers. 

Following your advice, I do:
=====================================================
***[domain.com] -- named.conf:
zone "domain.com" in {
    type master;
    file "domain.com.db";
 };
..
..
##File "domain.com.db"  
$TTL 3600
@    SOA    IN    root.domain.com.  adm-dns.domain.com. (
$serial    $refresh    $retry    $expire    $TTL
)
                                               IN    NS    root.domain.com.
domain.com.                           IN     A      1.1.1.1
root.domain.com.                    IN     A      1.1.1.1

sub1.domain.com.                   IN   NS     server1.sub1.domain.com.
sub1.domain.com.                   IN    A        2.2.2.2
server1.sub1.domain.com.       IN    A        2.2.2.2

sub2.domain.com.                   IN   NS     server2.sub2.domain.com.
sub2.domain.com.                   IN    A        3.3.3.3
server2.sub2.domain.com.       IN    A        3.3.3.3
======================================================
***[sub1.domain.com] -- named.conf:
zone "." in {
    type master;
    file "hint.domain.com";
};
zone "sub1.domainc.com" in {
    type slave;
    file "sub1.domain.com.db";
    masters {1.1.1.1; };
};

...
...
##File  "hint.domain.com"
$TTL 3600
@    SOA    IN    root.domain.com.  adm-dns.domain.com. (
$serial    $refresh    $retry    $expire    $TTL
)
                                               IN    NS    root.domain.com.
domain.com.                           IN     A      1.1.1.1
root.domain.com.                    IN     A      1.1.1.1
========================================================

On client of  [sub1.domain.com]:

C:\>ping server2.sub2.domain.com
Ping request could not find host server2.sub2.domain.com. Please check the name and try again.

C:\>nslookup
Default Server:  server1.sub1.domain.com
Address:  2.2.2.2

> server2.sub2.domain.com
Server:  server1.sub1.domain.com
Address:  2.2.2.2

*** sub1.domain.com can't find server2.sub2.domain.com: Non-existent domain
> server 3.3.3.3
Default Server:  [3.3.3.3]
Address:  3.3.3.3

> server2.sub2.domain.com
Server:  [3.3.3.3]
Address:  3.3.3.3

Name:    server2.sub2.domain.com
Address:  3.3.3.3



It seems clients  CAN NOT SEE  records on other servers.

 sub1.domain.com  CAN NOT SEE records on sub2.domain.com
 sub2.domain.com  CAN NOT SEE records on sub1.domain.com
 domain.com          CAN NOT SEE records on sub1.domain.com  & sub2.domain.com



Please help me to solve how to make server can see record together.     


Thanks you and best regards,



>Hi,
>
>just change your named.conf:
>
># zone "." in {
>#   type hint;
>#   file "/etc/root.hint";
># };
>
>zone "." in {
>  type slave;
>   file "/DNSOP/cesidian-root.zone";
>   masters { 212.97.45.53; };
>};
>
>
>or
>
>zone "." in {
>   type master;
>   file "/DNSOP/cesidian-root.zone";
>};
>
>
>you can even slave "f.root-servers.net" b and c should also allow slaving.
>Now you have a root.zone to work from.
>
>Unbelievable "." is not different from all the other zones.
>
>I have even seen sombody putting MX records in the root but no, that
>is no good idea and stay away from CNAME records too.
>
>Cheers
>Peter and Karin
>
>
>Truong Tan Son wrote:
>> Dear Sir,
>> 
>> I am using Bind for local Dns (Non-Internet connection), but
>>     don't know how to make "named.ca" file for Root server (master), and Subdomain servers (slaves).
>> 
>> Supposes my domain is named "domain", designate to the machine "root", IP address: 1.2.3.4.
>>  
>> --named.ca--
>> @    IN    SOA    root.domain.    man.domain.    (    
>>         $serial    $refresh    $retry    $expire    $TTL
>>)
>> domain.                    IN        NS    root.domain.
>> root.domain.             IN        A       1.2.3.4
>> 
>> sub.domain.              IN        NS    slave.sub.domain.
>> slave.sub.domain.      IN         A      5.6.7.8
>> 
>> *Root server (root.domain, IP: 1.2.3.4)
>>    -- named.conf --
>>     zone "domain" in {
>>             type master;
>>             file "named.ca";
>>           };
>> 
>> *Slave server (subdomain):
>>    -- named.conf --
>>    zone "domain . " in {
>>             type master;
>>             file "named.ca";
>>           };
>>     zone "sub.domain" in {
>>             type slave;
>>             file "db.sub.domain";
>>             masters {1.2.3.4; };
>>         }
>> 
>> 
>> Please give me advice.
>> 
>> 
>> Thanks you and best regards,
>> --
>> 
>> 
>> 

>-- 
>Peter and Karin Dambier
>The Public-Root Consortium
>Graeffstrasse 14
>D-64646 Heppenheim
>+49(6252)671-788 (Telekom)
>+49(179)108-3978 (O2 Genion)
>+49(6252)750-308 (VoIP: sipgate.de)
>mail: peter at peter-dambier.de
>mail: peter at echnaton.serveftp.com
>http://iason.site.voila.fr/
>https://sourceforge.net/projects/iason/

More information about the bind-users mailing list