Fwd: ip forwarding DNS 9.6.0

Mon, 06 Apr 2009 09:14:50 -0700

I gave the wrong view if that makes the difference. That was the internal network. 

view "external" {
 match-clients { any; };
 recursion no;

--myron
=================================
Myron Kowalski
MoCoSIN Network/Systems Administrator
Moravian College
my...@cs.moravian.edu



Begin forwarded message:


From: myron <kowal...@cs.moravian.edu>
Date: April 6, 2009 12:00:55 PM EDT
To: bind-users@lists.isc.org
Subject: ip forwarding DNS 9.6.0

I upgraded from 9.2.3.

I can't seem to do forwarding from a browser.
Everything works from 9.2.3. When I swap out to 9.6.0, from a command line I can do: nslookup; ping outside the domain; traceroute outside the domain.
From a web browser I can get out if I use the ip address. However, when I 
put in a canonical name get an rcode 5.
There's a barracuda spam firewall in the path. If I take it out, then everything works. There's really nothing to change on the barracuda as far as dns is concerned, other 
than pointing to a dns server.

snoop on the wire:
9.6.0
barracuda -> ns     DNS C www22.verizon.com. Internet Addr ?
  ns -> barracuda DNS R  Error: 5(Refused)

9.2.3
barracuda -> ns     DNS C www22.verizon.com. Internet Addr ?
ns -> barracuda DNS R www22.verizon.com. Internet CNAME www22.verizon.com.edgekey.net.
I glanced through the archives and found some suggestions about recursions to ip forwarding. I think the 
conf is set up correctly. At least, it works fine with 9.2.3.

Here's some of my named.conf edited.

acl mylab {
      10.0.0.0/8;
};
options {
      directory       "/etc/dns";
      auth-nxdomain   yes;
};
view "trusted" {
match-clients { mylab; };
recursion yes;
zone "moravian.edu" in {
      type forward;
      forwarders { 10.22.5.32; 10.22.5.38; };
};

Any help appreciated.

--myron
=================================
Myron Kowalski
MoCoSIN Network/Systems Administrator
Moravian College
my...@cs.moravian.edu



_______________________________________________
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users



_______________________________________________
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Reply via email to