View Single Post
  #1  
Old 18th June 2012, 11:32
new_kubunto new_kubunto is offline
Junior Member
 
Join Date: Jun 2012
Posts: 1
Thanks: 0
Thanked 0 Times in 0 Posts
Default DNS BIND 9 view and forward zone problem

Hello I have a BIND 9 on Centos 5 and I'm using view to differenciate dns reply based on source ip. All work fine exept the zone declared as type forward.

here some abstract about the config:

options {
...

recursion no;
listen-on port 53 {
10.x.x.x; };
cleaning-interval 30; # time in MINUTES when all expired records will be deleted (default 60)
listen-on-v6 { none; };
allow-query-cache { "ACL_all"; };
forward only;
forwarders { 10.xx.xx.x; 10.xx.xx.x; };
};



view "common" {
match-clients { "client_common"; };
recursion no;


zone "intranet.kkk.ch" in {
type forward;
forwarders { 145.xx.xx.xx; 193.xx.xx.xx;};
};



and here some logs:


18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: UDP request
18-Jun-2012 11:08:24.581 client: debug 5: client xx.xx.39.26#3726: view common: using view 'common'
18-Jun-2012 11:08:24.581 security: debug 3: client xx.xx.39.26#3726: view common: request is not signed
18-Jun-2012 11:08:24.581 security: debug 3: client xx.xx.39.26#3726: view common: recursion not available
18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: view common: query
18-Jun-2012 11:08:24.581 security: debug 3: client xx.xx.39.26#3726: view common: query (cache) 'intranet.kkk.ch/A/IN' approved
18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: view common: error
18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: view common: send
18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: view common: sendto
18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: view common: senddone
18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: view common: next
18-Jun-2012 11:08:24.581 client: debug 3: client xx.xx.39.26#3726: view common: endrequest
18-Jun-2012 11:08:24.581 client: debug 3: client @0x2b7f88f04910: udprecv


Help will be apreciated ...
Reply With Quote
Sponsored Links