Results 1 to 5 of 5

Thread: Help with DNS master/slave and views

  1. #1
    Join Date
    Apr 2007
    Beans
    29

    Cool Help with DNS master/slave and views

    Hi!

    I almost get this to work... Need a little help here.

    dns-01.example.com => 192.168.1.201

    /etc/bind/named.conf.local
    Code:
    acl internals {
    	127.0.0.0/8;
    	192.168.1.0/24;
    };
    
    view "internal" {
    	match-clients { internals; };
    
    	zone "example.com" {
    		type master;
    		file "/etc/bind/internals/db.example.com";
    		allow-transfer { 192.168.1.202; };
    	};
    
    	zone "1.168.192.in-addr.arpa" {
    		type master;
    		file "/etc/bind/internals/db.192";
    		allow-transfer { 192.168.1.202; };
    	};
    };
    
    view "external" {
    	match-clients { any; };
    
    	zone "example.com" {
    		type master;
    		file "/etc/bind/externals/db.example.com";
    		allow-transfer { 192.168.1.202; };
    	};
    
    	zone "xx.xx.201.in-addr.arpa" {
    		type master;
    		file "/etc/bind/externals/db.201";
    		allow-transfer { 192.168.1.202; };
    	};
    };


    dns-02.example.com => 192.168.1.202

    /etc/bind/named.conf.local
    Code:
    acl internals {
    	127.0.0.0/8;
    	192.168.1.0/24;
    };
    
    view "internal" {
    	match-clients { internals; };
    
    	zone "example.com" {
    		type slave;
    		file "/var/cache/bind/internals/db.example.com";
    		masters { 192.168.1.201; };
    	};
    
    	zone "1.168.192.in-addr.arpa" {
    		type slave;
    		file "/var/cache/bind/internals/db.192";
    		masters { 192.168.1.201; };
    	};
    };
    
    view "external" {
    	match-clients { any; };
    
    	zone "example.com" {
    		type slave;
    		file "/var/cache/bind/externals/db.example.com";
    		masters { 192.168.1.201; };
    	};
    
    	zone "xx.xx.201.in-addr.arpa" {
    		type slave;
    		file "/var/cache/bind/externals/db.201";
    		masters { 192.168.1.201; };
    	};
    };

    My problem: db.201 isn´t transferred from master to slave.


    Any ideas?

  2. #2
    Join Date
    May 2005
    Location
    Sydney, Australia
    Beans
    281

    Re: Help with DNS master/slave and views

    The slave host matches the view "internal" acl's so it is only able to see and transfer domains in the internal view.

    db.201 exists in the view "external". The slave dns host is not able to see, and therefore transfer this domain.

  3. #3
    Join Date
    Apr 2007
    Beans
    29

    Question Re: Help with DNS master/slave and views

    Hi gombadi!

    Thanks for your help!

    There is a way to do a setup like this work?

    Code:
             ------------
             | internet |
             ------------
                  |
                  |
                  | 201.xx.xx.xx/29
             ------------
             | firewall |
             ------------
                  | 192.168.1.254
                  |
                  |
          ------------------
          |                |
          |                |
          |                |
          |                |
     ------------     ------------
     |  dns-01  |     |  dns-02  |
     ------------     ------------
     192.168.1.201    192.168.1.202
    The firewall have 5 valid IPs and is using 2 of them with DNAT to dns-01 and dns-02.

    So, dns-01 is the master and dns-02 is the slave.

    Now almost everything works, just the reverse of 201.xx.xx.xx isn´t transferred to the slave...

  4. #4
    Join Date
    May 2005
    Location
    Sydney, Australia
    Beans
    281

    Re: Help with DNS master/slave and views

    This web page will do a better job of explaining the problem than I can.

    Have a look at the Views in Slave Name Servers section near the bottom.

    http://www.oreillynet.com/pub/a/orei...iews_0501.html

  5. #5
    Join Date
    Apr 2007
    Beans
    29

    Talking Re: Help with DNS master/slave and views

    Thanks gombadi!

    Very useful information in that link.

    I found the "correct" approach to use in BIND 9.3 and later...

    I posted in http://ubuntuforums.org/showpost.php...18&postcount=2


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •