Hi
I don't know how to let the dns as zone and also enquriy in local network please help
if this. the outside and inside can use this server to enquiry zone, but can't enquriy non zone. but how can I let it enquiry non zone restrict in local network.
Thank you
allow-query { any; }; recursion no;
Send instant messages to your online friends http://uk.messenger.yahoo.com
I don't know how to let the dns as zone and also enquriy in local network please help
if this. the outside and inside can use this server to enquiry zone, but can't enquriy non zone. but how can I let it enquiry non zone restrict in local network.
I am not following you well here, but I am guessing you have the following issue: If you match a "view" and get denied, even though a proceeding view may allow/contain what you want, such as a zone or the allowance of recursion, the deny/non-existence in an initial view will tank the lookup.
Always catches me initially:)
jlc
in my understanding:
1/ this allow internal network can query zone and outside allow-query { localhost; internal-network; }; recursion yes;
2/ this allow internal network can query zone but not outside
allow-query { localhost; internal-network; }; recursion no;
i would like this dns as let outside query zone and allow internal network to equiry zone and outside. how can i do it?
Thank you
--- On Thu, 10/8/09, Joseph L. Casale JCasale@activenetwerx.com wrote:
From: Joseph L. Casale JCasale@activenetwerx.com Subject: Re: [CentOS] bind question, please help To: "'CentOS mailing list'" centos@centos.org Date: Thursday, October 8, 2009, 3:54 AM
I don't know how to let the dns
as zone and also enquriy in local network
please help
if this. the outside and inside can use this server to
enquiry zone, but can't enquriy non zone. but how can I let it enquiry non zone restrict in local network.
I am not following you well here, but I am guessing you have the following issue: If you match a "view" and get denied, even though a proceeding view may allow/contain what you want, such as a zone or the allowance of recursion, the deny/non-existence in an initial view will tank the lookup.
Always catches me initially:)
jlc _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Send instant messages to your online friends http://uk.messenger.yahoo.com
Look into allow-recursion. Perhaps something like:
options { allow-recursion { localhost; internal-network; }; };
adrian kok wrote:
in my understanding:
1/ this allow internal network can query zone and outside allow-query { localhost; internal-network; }; recursion yes;
2/ this allow internal network can query zone but not outside
allow-query { localhost; internal-network; }; recursion no;i would like this dns as let outside query zone and allow internal network to equiry zone and outside. how can i do it?
Thank you
--- On Thu, 10/8/09, Joseph L. Casale JCasale@activenetwerx.com wrote:
From: Joseph L. Casale JCasale@activenetwerx.com Subject: Re: [CentOS] bind question, please help To: "'CentOS mailing list'" centos@centos.org Date: Thursday, October 8, 2009, 3:54 AM
I don't know how to let the dns
as zone and also enquriy in local network
please help
if this. the outside and inside can use this server to
enquiry zone, but can't enquriy non zone. but how can I let it enquiry non zone restrict in local network.
I am not following you well here, but I am guessing you have the following issue: If you match a "view" and get denied, even though a proceeding view may allow/contain what you want, such as a zone or the allowance of recursion, the deny/non-existence in an initial view will tank the lookup.
Always catches me initially:)
jlc _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Send instant messages to your online friends http://uk.messenger.yahoo.com _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
adrian kok wrote:
in my understanding:
1/ this allow internal network can query zone and outside allow-query { localhost; internal-network; }; recursion yes;
2/ this allow internal network can query zone but not outside
allow-query { localhost; internal-network; }; recursion no;i would like this dns as let outside query zone and allow internal network to equiry zone and outside. how can i do it?
Thank you
<snip>
Not quite sure of your question. if there is a zone you want for your internal network do something like this.
match-clients { internals; }; match-destinations { internals; }; allow-recursion {192.168.0.0/24;127.0.0.1;};
for external match-clients { any; }; match-destinations { any; }; recursion no;
This is assuming you're setting up views. Bind and views can get complicated. You may be better off setting up two DNS servers, one for internal and one for external. I have no experience with it but its been suggested here that dnsmasq is very easy to configure. Dan
-
adrian kok -
Alan Sparks -
Dan Carl -
Joseph L. Casale