Re: Re: Delegation - what needs to be there?
On 01/-10/37 13:59, Barry Margolin wrote: Or do I need to provide glue records in the delegated zone ... probably not, but thought I'd better ask. The only time you're required to provide glue is when a subzone is delegated to a nameserver whose name is in the subzone, to prevent a chicken-and-egg problem. This is what I thought but thought I'd make doubly certain. Thanks! Peter -- Peter Laws / N5UWY National Weather Center / Network Operations Center University of Oklahoma Information Technology pl...@ou.edu --- Feedback? Contact my director, Craig Cochell, cra...@ou.edu. Thank you! ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Delegation - what needs to be there?
That is correct because you are only allowing MX to resolve instead of allowing the A records that MX points too also resolve. On Fri, Mar 26, 2010 at 2:30 PM, Peter Laws pl...@ou.edu wrote: Delegating a zone to a server that has views. Internal view will allow any query. External view will only allow resolution of the MX record for that zone. The MX points to hosts in another zone (which is also publicly-accessible). When I query from an address that matches the ACL for the external view, I get the MX records back OK, but no A record. Is that right? Would a client just go and try to resolve the name on it's own? Or do I need to provide glue records in the delegated zone ... probably not, but thought I'd better ask. Version: 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 if it matters. Peter -- Peter Laws / N5UWY National Weather Center / Network Operations Center University of Oklahoma Information Technology pl...@ou.edu --- Feedback? Contact my director, Craig Cochell, cra...@ou.edu. Thank you! ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Delegation - what needs to be there?
In article mailman.960.1269635430.21153.bind-us...@lists.isc.org, Peter Laws pl...@ou.edu wrote: Delegating a zone to a server that has views. Internal view will allow any query. External view will only allow resolution of the MX record for that zone. The MX points to hosts in another zone (which is also publicly-accessible). When I query from an address that matches the ACL for the external view, I get the MX records back OK, but no A record. Presumably because you don't allow recursion or query-cache for external clients. Is that right? Would a client just go and try to resolve the name on it's own? Of course. Or do I need to provide glue records in the delegated zone ... probably not, but thought I'd better ask. The only time you're required to provide glue is when a subzone is delegated to a nameserver whose name is in the subzone, to prevent a chicken-and-egg problem. -- Barry Margolin, bar...@alum.mit.edu Arlington, MA *** PLEASE don't copy me on replies, I'll read them in the group *** ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
