Re: dns forwarding

[Dean Henrichsmeyer <dean@beret.net>]

Hello,

A couple of things. Unless both nameservers are used (half clients point
to .2, half clients point to .1) there isn't much point as you'd just be
adding an extra step in a lookup.

Secondly, if you do want to do that, in my experience forward first is
buggy in bind 8. You end up regularly with badly corrupted caches. If
you really want to do that, you should upgrade to bind 9.

And last but not least, if everything is functioning fine on your
servers, you're probably better off just leaving them without the
forwarding. DNS isn't a particularly taxing service on either hardware
or bandwidth so it's typically adequate to leave the role of the
secondary as redundancy rather than trying to get a more efficient setup
from 2 servers rather than 1.

Dean

On Fri, 2004-02-06 at 15:00, Danny Sauer wrote:
> So, let's say that I have 2 DNS servers running bind 8.x.  If one's 
> asked to resolve a domain and it doesn't have that domain in its cache, 
> I want it to ask the other before initiating a full recursive lookup on 
> an internal machine's behalf.  Name servers are 10.1.1.1 and 10.1.1.2. 
> I'd think that, for 10.1.1.1 I'd have (pruned for brevity):
> 
> options{
>   forward first;
>   forwarders{ 10.1.1.2; }
>   recursion yes;
>   allow-recursion{
>     !10.1.1.2;
>     10.1.1.0/24;
>   }
> }


-
To unsubscribe, send email to majordomo@luci.org with
"unsubscribe luci-discuss" in the body.