BIND 9.8.2: forward zone not working

[Gerry Reno]

On 03/18/2013 08:32 PM, Drunkard Zhang wrote:
> 2013/3/19 Gerry Reno <greno at verizon.net>:
>> Using BIND 9.8.2
>>
>> When you setup Samba 4 AD DC using BIND9_DLZ and your domain has external servers (eg: www,mail) at external providers
>> this means that the ISP and the internal network nameservers will both have SOA record for the domain.
>>
>> /etc/resolv.conf looks like this:
>>
>>     domain company.com
>>     nameserver 192.168.2.105
>>
>>
>> /etc/named.conf contains:
>>
>>     forwarders  { isp_nameservers; };
>>     recursion   yes;
>>
>> What is the preferred way to forward DNS requests to the ISP nameservers in order to resolve the domain's external
>> servers without using BIND views?
>>
>> I tried using a forward zone but it does not work in 9.8.2.
>>
>>     zone "www.company.com" {
>>         type forward;
>>         forward only;
>>         forwarders  { isp_nameservers; };
>>     };
>>
> If a domain name has CNAME, you must forward the CNAMEed one too. In
> this example, both www.company.com and company.com has to be
> forwarded.
>
> $ dig +nocmd www.company.com +multiline +noall +answer
> www.company.com. 1800 IN CNAME company.com.
> company.com. 1605 IN A 208.74.66.138
>> Everything resolves fine both our domain and other external domains with the exception of our domain's external server's
>> (www,mail).
>>
>> What do we need to get this forward zone working?
>>
>> -Gerry
>>
>>
>>

I don't see CNAME involved.  We have no local record for www.

A dig at the ISP shows www.company.com:

www.company.com    43200 IN A XX.XX.XX.XX

-Gerry