Bind doesn't look up past its own Domains
Sir Galahad
sgalahad at rcn.com
Mon Mar 27 14:24:05 UTC 2006
Correct.
// -------------------
// OPTIONS
// -------------------
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
query-source address * port 53;
recursion no;
};
Doesn't one want to have recursion set to NO to keep others from using your
DNS server for lookups or should the restrictions be set elsewhere for that.
In otherwords, I want the local network to use the nameservers for lookups,
but I don't want the outside to. Restrict by IP?
I'm new to this and I think I get what needs to be done. I apologize in
advance if I am asking well documented questions (it would be my lack of
understanding that is in the way then!).
Thanks!
-----Original Message-----
From: Mark_Andrews at isc.org [mailto:Mark_Andrews at isc.org]
Sent: Monday, March 27, 2006 9:07 AM
To: Sir Galahad
Cc: bind-users at isc.org
Subject: Re: Bind doesn't look up past its own Domains
> Hi All,
> I have seen that others have had similar issues, but I couldn't find an
> answer (or at least one I understood). I have setup a NS1 and NS2 Bind
> (RHEL 4 RPM) and successful have them set to answer for my domain(s).
>
>
>
> The problem is if I set the NS server to use itself for Outside lookups,
it
> fails. Using Dig, it will only response with a list of roots a-j then
stop
> with no answers. Is there something simple I am missing?
My guess is that you have "recursion no;" set but as you failed
to post your named.conf I can't be sure. Next time please post
your configuration.
> Thanks!
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at isc.org
More information about the bind-users
mailing list