[gentoo-user] Re: bind zone.file won't load

Sat, 04 Mar 2006 20:34:31 -0800 

Alexander Kirillov <[EMAIL PROTECTED]> writes:

> Here's a reverse zone file for my home network. It's 10.10.0/24
> but you'll figure out how to tailor this to your needs.

I think this is not where I'm having the trouble.  Just one network
for home lan I'm ok with.

> # cat pri/0.10.10.zone
>
> ;BIND DUMP V8
> $ORIGIN 10.10.IN-ADDR.ARPA.
> 0     3600    IN      SOA     baikal.iproducts.test. 
> root.baikal.iproducts.test. (
>               20050421 3600 900 3600000 3600 )        ;Cl=5
>       3600    IN      NS      baikal.iproducts.test.  ;Cl=5
> $ORIGIN 0.10.10.IN-ADDR.ARPA.
> 2     3600    IN      PTR     volga.iproducts.test.   ;Cl=5
> 1     3600    IN      PTR     baikal.iproducts.test.  ;Cl=5
> 3     3600    IN      PTR     g40.iproducts.test.     ;Cl=5
> ;10   3600    IN      PTR     wisla.iproducts.test.   ;Cl=5
>
>
> #cat named.conf
>
> ...
> zone "0.10.10.in-addr.arpa" IN {
>       type master;
>       file "pri/0.10.10.zone";
>       allow-update    {
>               10.10.0.1;
>       };
> };

Thanks... That apears to be about what I've got for 192.168.0/24



Can you show how a zone file for adding 3 new addresses to your scheme
One new machine new.iproducts.test whos sole job is to be passed copies
of all connection attempts at the firewall to internet interface.

This is an imaginary exercise and is not suggesting that you would
want to do something like it.  However it is what I'm trying to do and
is the source of my bind problem.

`new' has two nics the one facing the firewall/router to internet is
only allowed to talk to that router on that nic (by pf blocking) at
10.10.0.5.  

The second nic is `newdmz' at 10.10.1.1 and it is hardwired to a
simple hub and from there to a second nic on g40.iproducts.test.
Which is `g40dmz' at 10.10.1.2

The second nic is so 1 other lan machine can ssh to newdmz for what
ever reason.
So we've added:
             new.iproducts.test.   at 10.10.0.5
call them:   newdmz.iproducts.test. at 10.10.1.1 
             g40dmz.iproducts.test. at 10.10.1.2

The two nics are hard wired thru a hub to each other but not to
anything else.  Neither machine with 2 nics is setup as a router.
That is, forwarding internally is not enabled.

Now integrating those two on 10.10.1/24 in zone file:
db.iproducts.test is pretty straight forward 

But the reverse zone file
db.10.10.1   is where my meager skills end. 


-- 
gentoo-user@gentoo.org mailing list

Reply via email to