Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Wonder if any DNS/BIND experts out there can help us with this one :-) In short we're trying to get BIND to mimin dnsmasq's behaviour on what to do with host lookups it cannot find internally, so that it instead of failing, checks with another (external) server if maybe that has a record of it.
We have a setup with two internal DNS servers at our primary location which handles the 192.168.1.x network.
Our public DNS servers are located in a colocation facility together with web and mail, and obviously run public addresses.
Then we have a couple of satellite locations that connect with DSL on public ISP address pools and use nsupdate to tell the public, colocated DNS servers about their IP address.
Both the internal and external address space has the exact same zone. This is where the problem lies.
Here's the problem. The external servers are the only ones knowing about the satellite locations updated with nsupdate (dynamic). Thus we cannot reach them internally (ie trying to ping dubai-gw.example.org gives "host unknown since the internal (private) bind-server has no recollection of dubai-gw, which has been updated with nsupdate on the external DNS server. Since they share namespace, and the internal server has to be primary for the internal hosts at head office, we cannot use a forwarder (a zone can only be either primary or forward, not both it appears).
So how do we make the internal hosts able to resolve the dynamically updated records on the external servers, without having to make the internal DNS say internal.example.org and thus split the namespace?
I wish there was a record I could use in the domain saying dubai-gw, instead of A or CNAME, I could say : Check with the DNS server at IP 10.11.12.13 ...
Any insight greatly appreciated - this one has kept me up all night thinking...
If I understand your post correctly, you would add a delegation record (NS) to the zone file that needs to resolve the dynamically updated record at the colo DNS server.
hehe - no worries. Thanks again for quick and to-the-point reply. It's funny how simple and obvious a solution can be once it's been pointed out. I've read the DNS & BIND book from O'Reilly twice, and while I knew all the different parts of the equation, I just never saw the connection to put it together that simply and elegantly.
Now we have the perfect DNS solution - tested, verified and rock solid. Thanks again.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.