On Tue, 2013-04-02 at 14:16 -0700, Chris Buxton wrote: > Can anyone explain this to me? > > If a name exists in the response policy, and also exists in the real Internet > namespace, the value from the policy is returned. But if it doesn't exist out > on the Internet, then the value is not returned -- an NXDOMAIN (or SERVFAIL, > or whatever) is returned instead. > > I've known this for a while but haven't understood why it is thus. Today, it > has become a problem for me. If I set a policy of "this name gets response > X", I expect that policy to be used rather than "this name gets response X > unless it doesn't exist out on the Internet or can't be resolved due to an > error." >
Perhaps because it is a "response" zone, not an actual authoritative "zone"? Sounds strange, but makes sense to me.
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
