[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

BIND DNS question - only forward certain dns requests ?

Posted on 2007-03-27
6
Medium Priority
?
667 Views
Last Modified: 2013-12-23
Hi,

We are implementing a fail-over / load balancing solution based on Radware AppDirector.

The Radware AppDirector will redirect the users by acting as a DNS server and "feeding" the visitor the correct DNS record.

Problem: we want the Radware to only handle dns for two dns records ( www.domain.com and extranet.domain.com ), BUT NOT FOR THE OTHER 30 dns records in our public dns zone.

I know Windows 2003 has something called "conditional forwarding".
How can we solve this using BIND ? Forwarding only allows us to forward a complete subdomain ? Other possibilities ???

Thanks,
Joachim
0
Comment
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 18798412

You could add a local zone to BIND as domain.com and add the two records you require beneath it. It wouldn't forward requests for any other records within domain.com.

Chris
0
 
LVL 3

Author Comment

by:joachim.claeys@teleatlas.com
ID: 18798417
Hi Chris,

It's the Radware that will be handling dns requests for these two records.

The other records that will be managed by BIND.

The Radware has very basic dns capabilities ( no zone creation, ... )

J.
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 18798456

Hmm...

It's a pain, but you could fill the Hosts file with the other 30.

Unfortunately conditional forwarders in BIND are also a type of zone. e.g.:

zone "somedomain.com" IN
{
      type forward;
      forwarders {a.b.c.d; w.x.y.z;};
};

Chris
0
Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

 
LVL 5

Accepted Solution

by:
suggestionstick earned 1500 total points
ID: 18798544
Hi


Have you considered making a sub domain, and delegating DNS for that sub domain to  Radware?

so Bind will handle example.com
and will pass subdomain.example.com to Radware for load balancing.

Just a thought.
 




0
 
LVL 3

Author Comment

by:joachim.claeys@teleatlas.com
ID: 18798555
Yes. I was considering this as well, but it just doesn't feel like the right way to go. Nevertheless, if this is the only low-maintenance solution ...

I was just wondering if this has any disadvantages ( search engine bots, ... ? )

Thanks,
Joachim.
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 18798680

It depends what the server does. search engines and bots can't use a Hosts file, and from what you've written I hadn't imagined the server hosting public DNS services.

Chris
0

Featured Post

Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question