Michael Ryan Byrd wrote:
Before I start let me say that I hope I don't sound rude, and that at the end I'll answer your question anyway assuming you have a good reason for doing it this way.So I got my new machine and I'm setting it up to be a primary and secondary DNS server. It has two ethernet cards. Instead of doing IP aliasing like I had previously intented, can't I setup the same thing like:eth0 ip X.X.X.188 primary DNS: 127.0.0.1 secondary DNS: X.X.X.178 eth1 ip X.X.X.178 primary DNS: 127.0.0.1 secondary DNS: X.X.X.178 Won't named respond to DNS requests on both interfaces? Ideas?
This is really all completely unnecessary. You're welcome to have more than one NIC, but it changes nothing. I have both my primary and secondary entries pointed to the same IP. Noone cares except that it defeats the purpose of having a secondary at all.
The only reason to have a secondary name server is if you can put it on a separate box (so that it can cover for the primary if it's down) or on a different tectonic plate (so if some part of the network goes down things like SMTP servers will get a response that says that you exist).
Just point both records to the same IP. My registrar let me do that and it works fine (except that it's wrong).
Now, on the other hand: Maybe what you mean is that you can't change the records that say where your DNS servers are so they have to answer at both x.x.x.188 and x.x.x.178. If that's the case then yeah, bind will answer on both if you tell it to (it probably defaults to listening on all interfaces). But if you own the domain name you should be able to do whatever you want with those records (within reason).
What you really should do is find someone on a different network who doesn't mind doing secondary DNS for you. Then you just allow zone transfers to his server and point the secondary record to his machine. For instance BYU has two nameservers ns1 and ns2 (both primary I think) but they have an offsite secondary at ns1.westnet.net. This is the right way to do it.
smime.p7s
Description: S/MIME Cryptographic Signature
