[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bind-users
Subject:    Re: View Transfer
From:       Alan Clegg <Alan_Clegg () isc ! org>
Date:       2007-12-18 12:32:02
Message-ID: 4767BDC2.40900 () isc ! org
[Download RAW message or body]

Dmitry Rybin wrote:
> Hello world!
> 
> I have 1 dns server with installed bind 9.4 and over 20 views with 
> identical zones.
> 
> How can I transfer all views and it's zones to the another DNS server 
> with bind (slave)?

FAQ (but multiply by 10 since you have 10x as many views):

Q: How can I make a server a slave for both an internal and an external
view at the same time? When I tried, both views on the slave were
transferred from the same view on the master.

A: Use TSIG to select the appropriate view.

Master 10.0.1.1:
	key "external" {
		algorithm hmac-md5;
		secret "xxxxxxxx";
	};
	view "internal" {
		match-clients { !key external; 10.0.1/24; };
		...
	};
	view "external" {
		match-clients { key external; any; };
		server 10.0.1.2 { keys external; };
		recursion no;
		...
	};

Slave 10.0.1.2:
	key "external" {
		algorithm hmac-md5;
		secret "xxxxxxxx";
	};
	view "internal" {
		match-clients { !key external; 10.0.1/24; };
		...
	};
	view "external" {
		match-clients { key external; any; };
		server 10.0.1.1 { keys external; };
		recursion no;
		...
	};


-- 
Alan Clegg
ISC Training and Support
+1-650-423-1357 (o) +1-919-271-8851 (m)



[prev in list] [next in list] [prev in thread] [next in thread]