Re: can I set the second nameserver to a public dns cache?

2011-03-28 Thread Mark Andrews 

In message , terr
y writes:
> Hello,
> 
> I have only one nameserver for a domain.
> Can I set the second nameserver for this domain to a public dns cache?
> for example:

No.  A cache is NOT authoritative for the zone.
 
> abc.com.  IN  NS  ns1.abc.com.
> abc.com.  IN  NS  ns2.abc.com.
> 
> ns2.abc.com.  IN  A  8.8.8.8  # 8.8.8.8 is google's public dns server
> 
> 
> Since DNS cache does a rec-resolver, so it will also answer with the
> correct result?
> 
> Thanks.
> ___
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: can I set the second nameserver to a public dns cache?

2011-03-28 Thread Joseph S D Yao 
On Mon, Mar 28, 2011 at 08:25:46PM +0800, terry wrote:
> Hello,
> 
> I have only one nameserver for a domain.
> Can I set the second nameserver for this domain to a public dns cache?
> for example:
> 
> 
> abc.com.  IN  NS  ns1.abc.com.
> abc.com.  IN  NS  ns2.abc.com.
> 
> ns2.abc.com.  IN  A  8.8.8.8  # 8.8.8.8 is google's public dns server
> 
> 
> Since DNS cache does a rec-resolver, so it will also answer with the
> correct result?


You can set another peer nameserver to be a public, private,
commercial, or other name server as follows:

; Zone file for abc.com.
$TTLxxx
@   IN SOA  ...
IN NS   ns1.abc.com.
IN NS   google-public-dns-a.google.com.
IN NS   res060.ns.uu.net.

[Note the blank space in front of the [unneeded] "IN" in each "NS"
above: they each inherit the LHS from the record above.]

Assuming that an IP address that is not yours will "never" change is a
frightening assumption, especially when proved untrue.  Don't plant
someon else's IP address in your name space, unless there is a firm
agreement between yourself and them about why it's there and how changes
will be communicated.


--
/*\
**
** Joe Yao  j...@tux.org - Joseph S. D. Yao
**
\*/
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: can I set the second nameserver to a public dns cache?

2011-03-28 Thread Eivind Olsen 
> Hello,
> I have only one nameserver for a domain.
> Can I set the second nameserver for this domain to a public dns cache?
> for example:
> abc.com.  IN  NS  ns1.abc.com.
> abc.com.  IN  NS  ns2.abc.com.
> ns2.abc.com.  IN  A  8.8.8.8  # 8.8.8.8 is google's public dns server

No. Don't do that. A cache/resolver is not the same as an authoritative
server. For example, it will not flag the cache contents as being
authoritative (the AA flag).

Get a proper secondary/slave nameserver somewhere, it doesn't need to be
costly.

Regards
Eivind Olsen
eiv...@aminor.no


___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: can I set the second nameserver to a public dns cache?

2011-03-28 Thread Joseph S D Yao 
On Mon, Mar 28, 2011 at 11:35:06PM +1100, Mark Andrews wrote:
...
> No.  A cache is NOT authoritative for the zone.
...


Of course right.  I concentrated on the form and missed the substance.
I was thinking of a service that will serve your DNS for you - which a
caching server is not.


--
/*\
**
** Joe Yao  j...@tux.org - Joseph S. D. Yao
**
\*/
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

RE: can I set the second nameserver to a public dns cache?

2011-03-28 Thread Timothe Litt 
No.  But you can use a public (commercial or non-commerical) secondary DNS
service.

Google "secondary dns" or "free secondary dns".  You will find a number of
services and reviews.

Be careful in selecting - many charge or limit you based on the number of
queries and/or zones.   QOS and reliablity vary, as do levels of support.
Note that not all secondary services use BIND.

Many of the free services don't yet support DNSSEC, don't accept NOTIFY
(polling instead) or are un-reliable.  Most don't support IPV6 and don't
have any QOS guarantee.  Also, for any serious use, you want geographic
separation for disaster-tolerance.  Nonetheless, you can find reasonable
free services.

Commercial services also vary the same parameters as well as price and
support.

I settled on puck.nether.net/dns for my personal domain, which seems to stay
current with BIND, has been reliable, supports IPV6 and NOTIFY and is
located in Chicago.  But your milage (and criteria) may vary.


-
This communication may not represent my employer's views,
if any, on the matters discussed. 
 
-Original Message-
From: terry [mailto:te...@list.dnsbed.com] 
Sent: Monday, March 28, 2011 08:26
To: bind-users
Subject: can I set the second nameserver to a public dns cache?

Hello,

I have only one nameserver for a domain.
Can I set the second nameserver for this domain to a public dns cache?
for example:


abc.com.  IN  NS  ns1.abc.com.
abc.com.  IN  NS  ns2.abc.com.

ns2.abc.com.  IN  A  8.8.8.8  # 8.8.8.8 is google's public dns server


Since DNS cache does a rec-resolver, so it will also answer with the correct
result?

Thanks.


___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users