adrian kok wrote:
in my understanding:
1/ this allow internal network can query zone and outside allow-query { localhost; internal-network; }; recursion yes;
2/ this allow internal network can query zone but not outside
allow-query { localhost; internal-network; }; recursion no;i would like this dns as let outside query zone and allow internal network to equiry zone and outside. how can i do it?
Thank you
<snip>
Not quite sure of your question. if there is a zone you want for your internal network do something like this.
match-clients { internals; }; match-destinations { internals; }; allow-recursion {192.168.0.0/24;127.0.0.1;};
for external match-clients { any; }; match-destinations { any; }; recursion no;
This is assuming you're setting up views. Bind and views can get complicated. You may be better off setting up two DNS servers, one for internal and one for external. I have no experience with it but its been suggested here that dnsmasq is very easy to configure. Dan