Splitting private IP and Public IP

Jonah Simandjuntak jonahs at tiopan.com
Tue Jun 17 23:30:06 UTC 2008 

On Tue, Jun 17, 2008 at 11:51:11AM -0700, Chris Buxton wrote:
>
> Hold on there... You can't just suggest views without conveying the  
> full complexity of this feature.
> 
> What you can do, Jonah, is create a split namespace - two copies of  
> the zone, hosted on separate servers or in separate views on the same  
> server. Unless you resort to a rather complex and strange  
> configuration (involving forwarding between views, but there's more to  
> it than that), you cannot avoid duplicating the external data in the  
> internal version of the zone.
> 
> The BIND 9 views feature is sort of like virtual hosting in web  
> servers - multiple configurations, side-by-side on the same server,  
> that don't really have much to do with each other. In the case of  
> views, this is commonly used to create overlapping public and private  
> namespaces. Regardless of the particular use, each view is essentially  
> a separate named.conf, inside your actual named.conf; there are a few  
> things shared between views, such as the global logging statement, but  
> otherwise each view is a distinct name server configuration.
> 
> Chris Buxton
> Professional Services
> Men & Mice

Thanks Chris and everyone else who had sent their emails privately.

Yes, I've used views on two zones, one private and one public, and present them differently. But I couldn't make it work for private IPs mixed with public IPs in the same zone file, and present it differently. Trying to be "efficient", I am hoping that there are some options in views (or perhaps other "command") that I don't have to split them up to two diferent files, i.e. bind will see that the requested IP is private (defined by the admin), don't show it to public.

I'm not sure if views will work in our current infrastucture. For the sake of discussion, I've one internal master and one external/public slave. Everyone is using the slave to resolve host's IP, be it internal or public IP. Using views, how will the slave get a zone that contains, internal or public IP from the master? Any hint?

Thanks,

--Jonah

More information about the bind-users mailing list