DNS Query from different Subnet

[sethologik]

Hey everybody,



we have three subnet ( x.x.98.0/24 ; x.x.99.0/24 ; x.x.100.0/24 ) connected
to a firewall wich is connected to WAN ( so the gateway always x.x.x.254 ).

We wanted switch from dnsmasq to BIND9.

The BIND9 and (old) dnsmasq DNS Server is in 99.0/24 net with IP 201(BIND)
and 200(dnsmasq)



>From net 99.0/24 everything is working fine.

For example one of the most important things for us is our test web-servers
(example: webserver01.office.lan.de)

So in 99.0/24 on my computer I can access test web-sites with
https://website.test.de.webserver01/.

however when I try to do so in subnet like 98.0/24 it says he can't reach
this server...



I can dig on website.test.de.webserver01.office.lan.de from ANY subnet and
it gives me an answer like:

;; QUESTION SECTION: ;

website.test.de.webserver01.office.lan.de. IN A



;; ANSWER SECTION:

website.test.de.webserver01.office.lan.de. 86400 IN CNAME
webserver01.office.lan.de.

website.test.de.webserver01.office.lan.de. 86400 IN A x.x.99.216



;; AUTHORITY SECTION:

office.lan.de. 86400 IN NS dns.office.lan.de.



;; ADDITIONAL SECTION:

dns.office.lan.de. 86400 IN A x.x.99.201



nslookup gives me correct information as well.

So search-domain works after all which is pushed from DHCP OR is hard set in
some maschines.



But somehow the explorer can't open up the website anyways.



When I switch back to dnsmasq everything is working.

It is simply configured with wildcards like this:

address=/.webserver01/x.x.99.216



Can anyone help me out here?



Is there an option in BIND9 which needs to be set when I want to get full
query answers from different subnets or something like that?



Thank you so much in advance



--
Sent from: http://bind-users-forum.2342410.n4.nabble.com/