Re: problems in forwarding

[Kevin Darcy]

That's not what SERVFAIL is for.

You need a different architecture. If you want to resolve both internal 
and external names, then you need a version of the zone that has *both* 
sets of names in it. Your architecture should be built around that concept.



   - Kevin


Luis Silva wrote:
Regarding question 2, is it possible for the name server to respond 
servfail and then BIND could contact other servers?



 
On Fri, Aug 7, 2009 at 3:10 PM, Luis Silva > wrote:




On Fri, Aug 7, 2009 at 11:03 AM, Matus UHLAR - fantomas
mailto:uh...@fantomas.sk>> wrote:

On 07.08.09 10:50, Luis Silva wrote:
> 1 - I need to be a slave for the zones "testing.es
" and "testing2.es " but
> everything else must be redirected to the 10.112.15.3
server. Do you think
> the example bellow is correct? The problem is that everytime
I send a
> request to the forward zone, my server adds the root
nameservers in the
> authoritative and additions sections of the message, which i
do not think is
> correct. Is there a better alternative?

your server? You apparently did not allow recursion from your
IP addresses
on it.

 
[LS] But the answer section contains the correct information.



> 2 - My second problem is that I have my BIND server
forwarding all the
> request to a name server, but I wanted to test another
server in case of a
> negative answer (for example, name error) with the exception
of a certain
> zone.
> For example, I want to send all the requests for "es", but
in case of a
> negative answer and the zone domain name is not "test.es
", I want to try
> another server. Is that possible?

you can configure zone "test.es " to be
forwarded to different server. There
is no functionality in BIND that would continue searching for
a name when a
server responds "the name does not exist".
--
Matus UHLAR - fantomas, uh...@fantomas.sk
 ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu
postu.
You have the right to remain silent. Anything you say will be
misquoted,
then used against you.
___
bind-users mailing list
bind-users@lists.isc.org 
https://lists.isc.org/mailman/listinfo/bind-users





___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users


___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: problems in forwarding

[Luis Silva]

Sorry for the spam, but again regarding question 2, is it possible for the
name server to respond without the authoritative flag set and then BIND
could contact other servers?

On Tue, Aug 11, 2009 at 11:24 AM, Luis Silva  wrote:

> Regarding question 2, is it possible for the name server to respond
> servfail and then BIND could contact other servers?
>
>
>
> On Fri, Aug 7, 2009 at 3:10 PM, Luis Silva  wrote:
>
>>
>>
>>  On Fri, Aug 7, 2009 at 11:03 AM, Matus UHLAR - fantomas <
>> uh...@fantomas.sk> wrote:
>>
>>> On 07.08.09 10:50, Luis Silva wrote:
>>> > 1 - I need to be a slave for the zones "testing.es" and "testing2.es"
>>> but
>>> > everything else must be redirected to the 10.112.15.3 server. Do you
>>> think
>>> > the example bellow is correct? The problem is that everytime I send a
>>> > request to the forward zone, my server adds the root nameservers in the
>>> > authoritative and additions sections of the message, which i do not
>>> think is
>>> > correct. Is there a better alternative?
>>>
>>> your server? You apparently did not allow recursion from your IP
>>> addresses
>>> on it.
>>>
>>
>> [LS] But the answer section contains the correct information.
>>
>>>
>>> > 2 - My second problem is that I have my BIND server forwarding all the
>>> > request to a name server, but I wanted to test another server in case
>>> of a
>>> > negative answer (for example, name error) with the exception of a
>>> certain
>>> > zone.
>>> > For example, I want to send all the requests for "es", but in case of a
>>> > negative answer and the zone domain name is not "test.es", I want to
>>> try
>>> > another server. Is that possible?
>>>
>>> you can configure zone "test.es" to be forwarded to different server.
>>> There
>>> is no functionality in BIND that would continue searching for a name when
>>> a
>>> server responds "the name does not exist".
>>> --
>>> Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
>>> Warning: I wish NOT to receive e-mail advertising to this address.
>>> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
>>> You have the right to remain silent. Anything you say will be misquoted,
>>> then used against you.
>>> ___
>>> bind-users mailing list
>>> bind-users@lists.isc.org
>>> https://lists.isc.org/mailman/listinfo/bind-users
>>>
>>
>>
>
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: problems in forwarding

[Luis Silva]

Regarding question 2, is it possible for the name server to respond servfail
and then BIND could contact other servers?



On Fri, Aug 7, 2009 at 3:10 PM, Luis Silva  wrote:

>
>
>  On Fri, Aug 7, 2009 at 11:03 AM, Matus UHLAR - fantomas <
> uh...@fantomas.sk> wrote:
>
>> On 07.08.09 10:50, Luis Silva wrote:
>> > 1 - I need to be a slave for the zones "testing.es" and "testing2.es"
>> but
>> > everything else must be redirected to the 10.112.15.3 server. Do you
>> think
>> > the example bellow is correct? The problem is that everytime I send a
>> > request to the forward zone, my server adds the root nameservers in the
>> > authoritative and additions sections of the message, which i do not
>> think is
>> > correct. Is there a better alternative?
>>
>> your server? You apparently did not allow recursion from your IP addresses
>> on it.
>>
>
> [LS] But the answer section contains the correct information.
>
>>
>> > 2 - My second problem is that I have my BIND server forwarding all the
>> > request to a name server, but I wanted to test another server in case of
>> a
>> > negative answer (for example, name error) with the exception of a
>> certain
>> > zone.
>> > For example, I want to send all the requests for "es", but in case of a
>> > negative answer and the zone domain name is not "test.es", I want to
>> try
>> > another server. Is that possible?
>>
>> you can configure zone "test.es" to be forwarded to different server.
>> There
>> is no functionality in BIND that would continue searching for a name when
>> a
>> server responds "the name does not exist".
>> --
>> Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
>> Warning: I wish NOT to receive e-mail advertising to this address.
>> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
>> You have the right to remain silent. Anything you say will be misquoted,
>> then used against you.
>> ___
>> bind-users mailing list
>> bind-users@lists.isc.org
>> https://lists.isc.org/mailman/listinfo/bind-users
>>
>
>
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: problems in forwarding

[Luis Silva]

On Fri, Aug 7, 2009 at 11:03 AM, Matus UHLAR - fantomas
wrote:

> On 07.08.09 10:50, Luis Silva wrote:
> > 1 - I need to be a slave for the zones "testing.es" and "testing2.es"
> but
> > everything else must be redirected to the 10.112.15.3 server. Do you
> think
> > the example bellow is correct? The problem is that everytime I send a
> > request to the forward zone, my server adds the root nameservers in the
> > authoritative and additions sections of the message, which i do not think
> is
> > correct. Is there a better alternative?
>
> your server? You apparently did not allow recursion from your IP addresses
> on it.
>

[LS] But the answer section contains the correct information.

>
> > 2 - My second problem is that I have my BIND server forwarding all the
> > request to a name server, but I wanted to test another server in case of
> a
> > negative answer (for example, name error) with the exception of a certain
> > zone.
> > For example, I want to send all the requests for "es", but in case of a
> > negative answer and the zone domain name is not "test.es", I want to try
> > another server. Is that possible?
>
> you can configure zone "test.es" to be forwarded to different server.
> There
> is no functionality in BIND that would continue searching for a name when a
> server responds "the name does not exist".
> --
> Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
> Warning: I wish NOT to receive e-mail advertising to this address.
> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
> You have the right to remain silent. Anything you say will be misquoted,
> then used against you.
> ___
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: problems in forwarding

[Matus UHLAR - fantomas]

On 07.08.09 10:50, Luis Silva wrote:
> 1 - I need to be a slave for the zones "testing.es" and "testing2.es" but
> everything else must be redirected to the 10.112.15.3 server. Do you think
> the example bellow is correct? The problem is that everytime I send a
> request to the forward zone, my server adds the root nameservers in the
> authoritative and additions sections of the message, which i do not think is
> correct. Is there a better alternative?

your server? You apparently did not allow recursion from your IP addresses
on it.

> 2 - My second problem is that I have my BIND server forwarding all the
> request to a name server, but I wanted to test another server in case of a
> negative answer (for example, name error) with the exception of a certain
> zone.
> For example, I want to send all the requests for "es", but in case of a
> negative answer and the zone domain name is not "test.es", I want to try
> another server. Is that possible?

you can configure zone "test.es" to be forwarded to different server. There
is no functionality in BIND that would continue searching for a name when a
server responds "the name does not exist".
-- 
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
You have the right to remain silent. Anything you say will be misquoted,
then used against you. 
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

problems in forwarding

[Luis Silva]

Hi all,

I'm configuring my BIND server and I have two questions related with
forwarding.

1 - I need to be a slave for the zones "testing.es" and "testing2.es" but
everything else must be redirected to the 10.112.15.3 server. Do you think
the example bellow is correct? The problem is that everytime I send a
request to the forward zone, my server adds the root nameservers in the
authoritative and additions sections of the message, which i do not think is
correct. Is there a better alternative?

// Forward Zones
zone "." IN {
type forward;
forwarders {10.112.15.3;};
};
//Slave Zones
zone "testing.es" IN {
type slave;
notify no;
masters {10.112.25.184 port 40001;};
};
zone "testing2.es" IN {
type slave;
notify no;
masters {10.112.25.184 port 40001;};
};

2 - My second problem is that I have my BIND server forwarding all the
request to a name server, but I wanted to test another server in case of a
negative answer (for example, name error) with the exception of a certain
zone.
For example, I want to send all the requests for "es", but in case of a
negative answer and the zone domain name is not "test.es", I want to try
another server. Is that possible?

//I only have this part. Need help for the rest. :)
// Forward Zones
zone "es" IN {
type forward;
forwarders {10.112.25.185 port 40001;};
};


Kind Regards and tks in advance,
Luis
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users