On Fri, Feb 10, 2012 at 12:54 PM, Kennedy, Jim <kennedy...@elyriaschools.org> wrote: > I am beginning to wonder if they mean CNAME the domain google.com > to nossl.google.com so the lookups go there.
That won't work. (Or shouldn't, anyway.) If a CNAME exists for a domain name, it must be the only resource record for that domain name. This is because a CNAME is an alias for the *domain name*, not just any A records. CNAME says "the domain name you queried is canonically known by this other name". Suppose <foo.example.com.> has a CNAME record, with a right-hand-side of <bar.example.com.>. Once your resolver sees that CNAME, any further attempt to look up <foo.example.com.> will be treated as if one looked up <foo.example.com.> instead. Any additional records you put at "foo" would be ignored, because the resolver shouldn't be looking there. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin