[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freebsd-isp
Subject:    Re: Resolving DNS setup
From:       Mikel King <kronolith () ocsinternet ! com>
Date:       2001-05-29 22:08:38
[Download RAW message or body]

Mark,

    Why not make your caching server a secondary for theose zones you need
to provide your dialin LAN access to? Then just cache everthing else...you
could sertainly limit domain transfers
to that server only on said domains and even set up a replicating schedule
to make you maintenance a bit easier...

cheers,
mikel


Mark Drayton wrote:

> Nick Rogness (nick@rogness.net) wrote:
> > On Tue, 22 May 2001, Mark Drayton wrote:
> >
> > > Recently I set up a caching only nameserver at work which all our
> > > office machines, servers and dialup customers use for resolution
> > > instead of our two authoritative nameservers. A few days ago our
> > > internet connection went down, meaning that the caching nameserver
> > > couldn't get to the root nameservers and therefore couldn't resolve
> > > anything it didn't have cached. As it couldn't get to the root
> > > servers it also couldn't answer any queries for zones that we are
> > > authoritative for (even though the authoritative namesevers are on
> > > the same network).
> > >
> > > The end result of this was that customers who dialled into us
> > > couldn't see our site or pick up their mail as the caching
> > > nameserver wouldn't resolve the hostnames of the web/mail servers.
> >
> > One solution maybe to add your authoritative name servers as
> > forwarders in your caching only server config.
>
> If I do that won't the caching servers pass *all* requests to the
> authoritative servers (unless it has a valid answer cached)? One og the
> reasons I'm setting up the caching servers is to take the load off of
> the authoritative servers. Ultimately I don't want the authoritative
> servers to answer recursive queries.
>
> I was looking through the BIND docs and it appears I can define 'forward
> zones' with their own list of forwarders that override the global
> forwarders {} statement. I might try configuring the caching namesever
> with forward zones for all our zones to pass the requests to our
> authoritative servers. Any problems with this setup?
>
> > No, caching nameserver should get the info directly if it is not
> > cached locally, plain and simple.  The TTL for that record on the
> > caching nameserver will take affect after it has been cached locally
> > on the caching nameserver.
>
> Hm, it seems to be working now...
>
> Cheers,
>
> --
>
> Mark Drayton
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-isp" in the body of the message



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message

[prev in list] [next in list] [prev in thread] [next in thread]