view function of bind 9
Joseph S D Yao
jsdy at center.osis.gov
Wed Apr 4 17:23:51 UTC 2007
On Tue, Apr 03, 2007 at 07:52:28AM +0800, edwardspl at ita.org.mo wrote:
> Dear All,
>
> Is there an simple sample for setup Internal and External DNS ?
>
> Edward,
The term is "split DNS", cf. pp. 315-322 of DNS and BIND 5th edition.
If you subscribe, <http://safari.oreilly.com/0596100574>.
Note that there are several different ways to set up "split DNS"; a
Google search reveals many sites, some of which might have good
information.
It actually is simple if you remember that you are setting up two
entirely different separate non-communicating know-nothing-about-each-
other domains that just happen to have the same name, in different
universes. If there are any entries in the external name server that
you want visible internally, you will need to copy them into the
configuration of the internal name server.
One example is
<http://www.sans.org/reading_room/whitepapers/firewalls/791.php>.
See also sections 7.2.8 and 7.2.9 of
<http://csrc.nist.gov/publications/nistpubs/800-81/SP800-81.pdf>,
although this is NOT "simple" and does not give a cookbook answer.
Other interesting references:
<http://safari.oreilly.com/0789722739/ch08lev1sec10>
<http://www.zytrax.com/books/dns/ch4/#stealth>
I hope that this helps.
--
Joe Yao
Analex Contractor
More information about the bind-users
mailing list