Sorry for going a bit OT
On 11-02-2025 11:52, Viktor Dukhovni via Postfix-users wrote:
I'm no expert to say the least, so this may be a stupid question:
If setting up a completely seperate bind is preferred, could I make an
"empty" setup and use my primary as forwarder?
Yes, that's the idea. With "unbound" it is quite typical to not be
authoritative for any zones, unlike BIND it is not also designed to be a
fully-featured authoritative server.
Does anyone mind giving me a hint about bind?
I have a primary and a secondary.
They both seem to work.
From my postfix machine I can do a dig with expected results.
I have then set up a caching bind on my local postix machine.
If I change /etc/resolv.conf to 127.0.0.1 everything seems to work.
Almost...
The authorative domains of the primary and secondary bind servers give
no responses when cached through the postfix box.
External domains like postfix.org work perfectly.
Setup:
******
acl "trusted" {
127.0.0.1/32;
localhost;
};
and options section:
recursion yes;
allow-query { trusted; };
listen-on { 127.0.0.1; };
allow-transfer { none; };
forwarders {
192.168.20.10;
192.168.20.11;
};
forward only;
dnssec-validation auto;
*******
Hints anyone?
TIA
Danjel_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
