Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Conditional Forwarding using BIND9
Special Forums IP Networking Conditional Forwarding using BIND9 Post 302245010 by otheus on Thursday 9th of October 2008 06:45:02 AM
Old 10-09-2008
Ooooh, that blows.

I agree you can solve this using BIND9. There is a simple one for such cases, but it's been years. But first, why can't you reverse the order so that the "local" nameserver is searched first?
 

9 More Discussions You Might Find Interesting

1. Cybersecurity

Dns cache poisoning upgrade to bind9.5.0p2

Hi again guys, It seems this is a global thing affecting all the DNS bind versions prior to July 28 2008. I have my work cut out for me very soon, I see at least a handful of servers in my list that either need to patching or upgrading. How many of you guys are affected? Anybody successfully... (4 Replies)
Discussion started by: sparcguy
4 Replies

2. IP Networking

DNS upgrade issues, bind9.5.0_P1

so we had bind 9.3.0... we upgraded to 9.5.0 patch 1 we kept the exact same named.conf now we have a problem that some DMZ server cant do lookups from our DNS slave anymore. in the named.log we see things like this: 22-Jul-2008 16:05:04.694 security: info: client <our DMZ servers... (2 Replies)
Discussion started by: robsonde
2 Replies

3. Cybersecurity

ssh X-forwarding and remote forwarding behind proxy

Hi, from my workplace we use a proxy to connect to the outside world, including external ssh servers. The problem is that the server is seeing the connection coming from the proxy and knows nothing about the client behind it. The ssh connection itself works fine, but x-forwarding does not work as... (1 Reply)
Discussion started by: vampirodolce
1 Replies

4. UNIX and Linux Applications

bind9 with ldap using dlz

Hello guys, can anyone help me with the below error I'm getting from bind9? I'm trying to make bind read all the zone info from openldap, I have already created the schema and I've put some info into the ldap. I have also tried to google the error with no success. I'm aware there is an problem... (1 Reply)
Discussion started by: yered
1 Replies

5. UNIX for Advanced & Expert Users

Can I use bind9 to resolve only ONE hostname in a zone?

Hi there, I have the following problem. I have a Debian server with bind9. I can also use my ISP DNS server through the internet box (192.168.1.1). I would like to fool my client workstation to a local machine when they query for one specific hostname within a domain. I want to let the... (5 Replies)
Discussion started by: kokonut95
5 Replies

6. Solaris

Bind9 DNS on Solaris 10 x4270 & CPU usage

I have configured a Bind9 DNS on a X4270 machine with Solaris10 I am excuting some repformance tests with DNSPERF tool and maximun CPU usage is 23%. I have seen with prstat -L -p PID that named process usses only 2 of the 8 available CPU at the same time although threads for all CPUs exist.... (2 Replies)
Discussion started by: parisph
2 Replies

7. UNIX for Dummies Questions & Answers

Bind9 non existing ip , time of query

how can i set default permission for nslookup, i have in my nslookup timeout = 0 retry = 3 port = 53 but i want to set it to : timeout = 2 retry = 2 port = 53 i'm using bind9 , where can i set the default timeout for it? thanks in advance (0 Replies)
Discussion started by: prpkrk
0 Replies

8. UNIX for Dummies Questions & Answers

BIND9 CNAME to External Domain

We're moving an app from a server in our domain to a server hosted by the vendor in their domain. This app had it's own domain setup that we're authoritative for. Do I need to create a new zone file? zone-vendor_com and set up the CNAME records in this file? Or if I can just edit the one I... (1 Reply)
Discussion started by: joeaverage
1 Replies

9. IP Networking

Bind9 DNSSEC and rollerd

Hi all, I've a litte problem to get rollerd running and signing my zones if the ZSK of my zones are near expiring or expired. rollerd is running but do nothing startet with: /usr/bin/perl /usr/sbin/rollerd -rrfile /etc/bind/all.rollrec -directory /etc/bind -logfile /dev/stdout ... (1 Reply)
Discussion started by: xabbu
1 Replies

LEARN ABOUT CENTOS

host

HOST(1) 							       BIND9								   HOST(1)

NAME

       host - DNS lookup utility

SYNOPSIS

       host [-aCdlnrsTwv] [-c class] [-N ndots] [-R number] [-t type] [-W wait] [-m flag] [-4] [-6] {name} [server]

DESCRIPTION

       host is a simple utility for performing DNS lookups. It is normally used to convert names to IP addresses and vice versa. When no arguments
       or options are given, host prints a short summary of its command line arguments and options.

       name is the domain name that is to be looked up. It can also be a dotted-decimal IPv4 address or a colon-delimited IPv6 address, in which
       case host will by default perform a reverse lookup for that address.  server is an optional argument which is either the name or IP address
       of the name server that host should query instead of the server or servers listed in /etc/resolv.conf.

       The -a (all) option is equivalent to setting the -v option and asking host to make a query of type ANY.

       When the -C option is used, host will attempt to display the SOA records for zone name from all the listed authoritative name servers for
       that zone. The list of name servers is defined by the NS records that are found for the zone.

       The -c option instructs to make a DNS query of class class. This can be used to lookup Hesiod or Chaosnet class resource records. The
       default class is IN (Internet).

       Verbose output is generated by host when the -d or -v option is used. The two options are equivalent. They have been provided for backwards
       compatibility. In previous versions, the -d option switched on debugging traces and -v enabled verbose output.

       List mode is selected by the -l option. This makes host perform a zone transfer for zone name. Transfer the zone printing out the NS, PTR
       and address records (A/AAAA). If combined with -a all records will be printed.

       The -i option specifies that reverse lookups of IPv6 addresses should use the IP6.INT domain as defined in RFC1886. The default is to use
       IP6.ARPA.

       The -N option sets the number of dots that have to be in name for it to be considered absolute. The default value is that defined using the
       ndots statement in /etc/resolv.conf, or 1 if no ndots statement is present. Names with fewer dots are interpreted as relative names and
       will be searched for in the domains listed in the search or domain directive in /etc/resolv.conf.

       The number of UDP retries for a lookup can be changed with the -R option.  number indicates how many times host will repeat a query that
       does not get answered. The default number of retries is 1. If number is negative or zero, the number of retries will default to 1.

       Non-recursive queries can be made via the -r option. Setting this option clears the RD -- recursion desired -- bit in the query which host
       makes. This should mean that the name server receiving the query will not attempt to resolve name. The -r option enables host to mimic the
       behavior of a name server by making non-recursive queries and expecting to receive answers to those queries that are usually referrals to
       other name servers.

       By default, host uses UDP when making queries. The -T option makes it use a TCP connection when querying the name server. TCP will be
       automatically selected for queries that require it, such as zone transfer (AXFR) requests.

       The -4 option forces host to only use IPv4 query transport. The -6 option forces host to only use IPv6 query transport.

       The -t option is used to select the query type.	type can be any recognized query type: CNAME, NS, SOA, SIG, KEY, AXFR, etc. When no query
       type is specified, host automatically selects an appropriate query type. By default, it looks for A, AAAA, and MX records, but if the -C
       option was given, queries will be made for SOA records, and if name is a dotted-decimal IPv4 address or colon-delimited IPv6 address, host
       will query for PTR records. If a query type of IXFR is chosen the starting serial number can be specified by appending an equal followed by
       the starting serial number (e.g. -t IXFR=12345678).

       The time to wait for a reply can be controlled through the -W and -w options. The -W option makes host wait for wait seconds. If wait is
       less than one, the wait interval is set to one second. When the -w option is used, host will effectively wait forever for a reply. The time
       to wait for a response will be set to the number of seconds given by the hardware's maximum value for an integer quantity.

       The -s option tells host not to send the query to the next nameserver if any server responds with a SERVFAIL response, which is the reverse
       of normal stub resolver behavior.

       The -m can be used to set the memory usage debugging flags record, usage and trace.

IDN SUPPORT

       If host has been built with IDN (internationalized domain name) support, it can accept and display non-ASCII domain names.  host
       appropriately converts character encoding of domain name before sending a request to DNS server or displaying a reply from the server. If
       you'd like to turn off the IDN support for some reason, defines the IDN_DISABLE environment variable. The IDN support is disabled if the
       variable is set when host runs.

FILES

       /etc/resolv.conf

SEE ALSO

       dig(1), named(8).

COPYRIGHT

       Copyright (C) 2004, 2005, 2007-2009 Internet Systems Consortium, Inc. ("ISC")
       Copyright (C) 2000-2002 Internet Software Consortium.

BIND9								   Jun 30, 2000 							   HOST(1)
All times are GMT -4. The time now is 07:14 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy