[47099] in North American Network Operators' Group
Re: Selective DNS replies
daemon@ATHENA.MIT.EDU (Avleen Vig)
Thu Apr 25 14:22:12 2002
Date: Thu, 25 Apr 2002 19:21:52 +0100 (BST)
From: Avleen Vig <lists-nanog@silverwraith.com>
To: Clayton Fiske <clay@bloomcounty.org>
Cc: "nanog@merit.edu" <nanog@merit.edu>
In-Reply-To: <20020425100121.F309@bloomcounty.org>
Message-ID: <20020425191211.S18451-100000@apple.silverwraith.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 25 Apr 2002, Clayton Fiske wrote:
> Wouldn't you automatically have to have multiple zonefiles per domain
> in order to have multiple views? With bind9, my setup is:
Not really, because you define the views inside the zonefiles, instead of
defining the sonefiles inside the view. Each zone has full control over
what is a zone for it and what isn't.
Bind's currnet datapath looks like this:
Incoming query -> Check src address -> Enter view -> perform query
What I think it SHOULD be like is:
Incoming query -> Check domain being queried -> Enter zone file -> Perform
query -> If 'view' is defined against the RR, check src address and reply
appropriately.
Better?
