to route specific dns query to specific dns server
Riccardo Castellani
ric.castellani at alice.it
Wed Dec 29 07:57:04 UTC 2010
>Hopefully the microsoft domain is a name that is not availible on the
>internet, like mymsdomain.local. Then your microsoft server is known as
>domaincontroller.mymsdomain.local.
Of course !
>In that case you would setup a forwarder in BIND for mymsdomain.local that
>points to the microsoft dns servers.
Ok, but I'd like understanding if:
1- for every query to BIND there is always a forwarding to microsoft dns
servers or if there is only a forwarding for queries containing
'mymsdomain.local' domain ?
2- If I configure BIND how you suggest me, can I not permit Internet queries
for ''mymsdomain.local' ?
3- Can you show me sample example of forwarding configure file for specific
domain, please ?
----- Original Message -----
From: Lyle Giese
To: Riccardo Castellani
Sent: Tuesday, December 28, 2010 11:12 PM
Subject: Re: to route specific dns query to specific dns server
Riccardo Castellani wrote:
I'm using Bind9 for my name server (SERVER EXT) and to give name resolution
for who access from Internet to my domain (e.g. to access to my Web site or
to write to my email addresses).
My domain is example.com:
www.Example.com
test.host at example.com
This dns server maps only my pubblic addresses.
This server has 2 nics: internal + external ip address.
Some internal servers, as proxy or mail servers, send dns requests to this
dns server to solve names.
I have also internal MS domain (dns server is SERVER INT) which is
different from the other, it's created by Domain Controllers + AD
(activedirectory.com) and it's used to map machines into internal network.
Now I my email server or proxy server (which are in internal network) need
to synchronize time so they have to use my internal NTP server; these Linux
machines use 'SERVER EXT' in /etc/resolv.conf, so how I can indicate to send
request for specific internal name (ntp.activedirectory.com) to dns server
INT ?
I could insert it inot /etc/hosts but it's not dnssssss service !!!
Hopefully the microsoft domain is a name that is not availible on the
internet, like mymsdomain.local. Then your microsoft server is known as
domaincontroller.mymsdomain.local.
In that case you would setup a forwarder in BIND for mymsdomain.local that
points to the microsoft dns servers. Then when the linux boxes want
domaincontroller.mymsdomain.local, your Bind name server will ask the
microsoft dns servers for the answer.
Lyle Giese
LCR Computer Services, Inc.
More information about the bind-users
mailing list