Contributed by jose on from the quick-docs dept.
"A "howto" article describing the use of Bernstein's tinydns on OpenBSD, serving both Internet and local network queries from a single host:Wayne's provided a guide which you can use to quickly set up split view DNS for yourself or your office using OpenBSD. Pretty handy stuff!
(Comments are closed)
By Matt () on
doesn't the data file already have the ability to look at where a request is coming from and then reply to that request based upon the originating IP? Granted a person would have to edit the data file manually after using the little add-host scripts. Seems like a matter of choose your poison, edit the data file directly or maintain two separate dns servers that contain very similar information.
from djb's website:
For versions 1.04 and above: You may include a client location on each line. The line is ignored for clients outside that location. Client locations are specified by % lines:
%lo:ipprefix
means that IP addresses starting with ipprefix are in location lo. lo is a sequence of one or two ASCII letters. A client is in only one location; longer prefixes override shorter prefixes. For example,
%in:192.168
%ex
+jupiter.heaven.af.mil:192.168.1.2:::in
+jupiter.heaven.af.mil:1.2.3.4:::ex
specifies that jupiter.heaven.af.mil has address 192.168.1.2 for clients in the 192.168.* network and address 1.2.3.4 for everyone else.
Check out http://cr.yp.to/djbdns/tinydns-data.html
for the full info.
Comments
By Wayne Marshall () guinix@yahoo.com on mailto:guinix@yahoo.com
%ix:192.168.0
%in:10.0.1
%ex
+www.guinix.com:192.168.0.254:::ix
+www.guinix.com:192.168.0.254:::in
+www.guinix.com:199.104.115.195:::ex
I find the separate instances a little cleaner to configure and maintain, but certainly djb gives you this method as well.
Comments
By Henning () on
no, you just need
%in:192.168.0
%in:10.0.1
%ex
+www.guinix.com:192.168.0.254:::in
+www.guinix.com:199.104.115.195:::ex
the 2 instances setup is much too complicated IMHO...
Comments
By Matt () on
By Eduardo Alvarenga () eduardo at thrx dot dyndns dot org on mailto:eduardo at thrx dot dyndns dot org
I think I'll never get back to bind. Er... what is Bind ? I remeber to have heard about it around 1993....
By Bye Buy by () on
Not to start a flame war on preferred dns servers, or anything.
Comments
By Anonymous Coward () on
Comments
By Anonymous Coward () on
By mirabile () mirabile@bsdcow.net on mailto:mirabile@bsdcow.net
neither the dnscache servers one.
I've now set up a domain with two NS on DynDNS,
one of these boxen also serves on IPv6.
Needless to say they both run OpenBSD.
Yes I did say IPv6...
By Jim Knoble () jmknoble@pobox.com on http://www.pobox.com/~jmknoble/
Note that, if you have a heterogeneous internal network with hosts that run BIND in "slave" mode, you may want (or need) to run axfrdns. In that case, you may want a slightly different configuration:
This scheme also allows tinydns-local to appear as an authoritative DNS server on the internal network (even without running axfrdns), in case you want multiple redundant internal DNS caches.