On Wed, 2007-12-05 at 14:05 -0800, Roland McGrath wrote:
> Btw. dnsmasq allows you to restrict nameservers on domains, i.e.
specify a
> domain for which a nameserver should be asked. But a different question: How
> do you handle reverse dns lookups for the internal ip (vpn) addresses, are
> they forwarded to the ISP dns, too? Or do you prevent this somehow?
Those are just more zones you want to be forwards in the "inside" view.
They are even easier to configure automagically, because you just do all
the zones for the subnets that are being routed through the VPN connection.
I think this was one argument against using nscd exclusively and moving
to a caching nameserver, because /etc/resolv.conf can't support split
DNS. How does one do split DNS with nscd?
Dan