>> Suppose you have a firewall, suppose that you install a split DNS
>> configuration
>> and suppose that you have subdomains...
>> Suppose someone in your domain wants to resolv a machine in the subdomain,
>> you think that the primary server will invoke the subdomain's
>> nameserver,right ?
>> No...it will forward to the outside because you told it to forward...even if
>> he really finds out that the good server was the subdomain's server...
>>
>> Now, suppose that this problem is mine...
>>
>> Please... help :'( ....
>>
We solved this problem in Black Hole version 2.X by having a specially
configured proxy-udp (or "proxy-dns" ) allowing the internal DNS server to
query the root servers directly without using the "forward" trick which is
only applicable for sites without subdomain servers.
The other solution is to modify BIND on the internal DNS server to make it
slightly more intelligent with "forward" :'(
Hung.
-----------------------------------------------------------------------
Hung Vu
Milkyway Networks Corp. Tel: (613) 596-5549
2650 Queensview Drive, Suite 255, Fax: (613) 596-5615
Ottawa, Ontario, Canada.
K2B - 8H6 Email: hungvu @
milkyway .
com
-----------------------------------------------------------------------
|
|
