Alan McKinnon <alan.mckin...@gmail.com> writes: > On 02/12/2015 21:37, lee wrote: >> Hi, >> >> is there a way to configure bind so that the names of local hosts, >> i. e. the ones bind is authoritative for, can be resolved without a >> connection to the internet? >> >> I don't like it at all that when the internet connection goes out, no >> name resolution at all is possible. Since the information about the >> local hosts is known to bind from its configuration files, why can't it >> just resolve them? >> > > > There are several problems with your idea. First, the configured > namservers in resolv.conf are caching servers, not authoritative > servers. You never configure an auth server to act as a cache. Yes, it > can be done. No, it's an awful idea and things break horribly.
I thought it was caching anyway. What's the point of forgetting the answers to queries right away after answering them? > Secondly, nothing else on your network can know your auth server is > authoritative without first being informed so by the delegating server. The name server itself knows this from its configuration, and it's the only thing that needs to know this because it's the only thing everything on the network is asking. > Or in other words, if you own example.com and an auth server for > example.com is on your network, you have to first go via .com to know > that. Weird, but that's how it works. The name server doesn't know what domains it's supposed to give answers for without asking others first? > DNS was designed to need a network connection because most of the DNS is > out there somewhere else Then how do you solve the problem of being unable to even resolve the names of hosts on the LAN when the connection goes down? > What you should do, is run your own caching server on the local network > and set the TTL for your own zones to something sane i.e. 1 day (as > opposed to the current idiotic fad of making it 10 minutes). The query > your cache for your entire zone once a day. Unless your internet > connection goes out for more than a day, you're good. Hm, I just tried that, and it seems to work. It didn't before I made some small changes last night, that's why I'm asking. Weird ...
