Forward zone problem

Stefanick, Andrew astefanick at metasolv.com
Thu Mar 16 20:58:09 UTC 2006 

I am struggling with a forward zone issue in Bind 9
 

We have many forward zones configured and they work fine.  They really
amount to no more than a forward directive such as

 

 

zone "name.of.domain" {

    type forward;

    forwarders {w.x.y.z;};

};

 

 

We put in a new one, and it will not work.  nslookup shows it seemingly
only trying to resolve the query internally.

 

If I set the server to the IP of the forwarder in the nslookup, then we
can resolve the queries when posed directly to the remote DNS server.
So, it is not a networking issue.

 

I do not understand the logic/sequence that occurs when a query is posed
that should be sent to a forwarder.  Where do the root-server  records
come in, and why even.  Doesn't the forward directive tell the server,
"don't even bother, just go to w.x.y.z for the answer"

 

here are some example of using dig against some of the forward zones
that work.  The AUTHORITY section shows the name of the remote DNS that
controls the domain.

 

When I try dig for the new forwarder, the only AUTHORITY that shows is
the A.rootserver.

 

I really don't get it.

 

I ONLY put in the 3 line directive, and I am done.

 

I don't even know what to change/try.  It is too simple to implement.

 

 

 

# ./dig mnc150.mcc310.gprs

 

; <<>> DiG 9.2.2 <<>> mnc150.mcc310.gprs

;; global options:  printcmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61159

;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

 

;; QUESTION SECTION:

;mnc150.mcc310.gprs.            IN      A

 

;; AUTHORITY SECTION:

mnc150.mcc310.gprs.     600     IN      SOA
wcrdns1.mnc410.mcc310.gprs. root

.wcrdns1.mnc410.mcc310.gprs. 2006030303 600 3600 1209600 600

 

;; Query time: 115 msec

;; SERVER: 12.25.118.5#53(12.25.118.5)

;; WHEN: Thu Mar 16 15:37:45 2006

;; MSG SIZE  rcvd: 92

 

# ./dig mnc170.mcc310.gprs

 

; <<>> DiG 9.2.2 <<>> mnc170.mcc310.gprs

;; global options:  printcmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 3961

;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

 

;; QUESTION SECTION:

;mnc170.mcc310.gprs.            IN      A

 

;; AUTHORITY SECTION:

mnc170.mcc310.gprs.     600     IN      SOA
wcrdns1.mnc410.mcc310.gprs. root

.wcrdns1.mnc410.mcc310.gprs. 2006030303 600 3600 1209600 600

 

;; Query time: 99 msec

;; SERVER: 12.25.118.5#53(12.25.118.5)

;; WHEN: Thu Mar 16 15:38:05 2006

;; MSG SIZE  rcvd: 92

More information about the bind-users mailing list