[Question] zone transfer issue with multiple views
Eoin Kim
Eoin.Kim at rcst.com.au
Sat Dec 9 02:00:03 UTC 2017
Thanks guys. Let me play a bit and see how it goes. Cheers.
Eoin
________________________________
From: Matthew Pounsett <matt at conundrum.com>
Sent: Saturday, 9 December 2017 9:29 AM
To: Eoin Kim
Cc: Lightner, Jeffrey; bind-users at lists.isc.org
Subject: Re: [Question] zone transfer issue with multiple views
On 8 December 2017 at 17:37, Eoin Kim <Eoin.Kim at rcst.com.au<mailto:Eoin.Kim at rcst.com.au>> wrote:
Hi,
Thanks for your help. But is it possible to do it without additional IP address? I thought that I am not really bad with BIND but as soon as I started using views, I'm going nowhere [😊]
In order for the slave's View A to transfer from the master's View A, and the slave's View B to transfer from the master's view B, there has to be some way for the master to differentiate the two views on the slave and answer their queries from the correct view. Source IP address is the typical way to do that.
You could probably select on source port instead, by setting the slave's transfer-source to a particular port for each view. I've never set this up myself, but I just checked the ARM and it looks like you can use any legal address_match_list in the view's match-clients list, so you could also select on TSIG key used, if you assign per-view TSIG keys.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20171209/905a735f/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OutlookEmoji-?.png
Type: image/png
Size: 488 bytes
Desc: OutlookEmoji-?.png
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20171209/905a735f/attachment-0001.png>
More information about the bind-users
mailing list