On Sat, May 1, 2021, at 2:50 PM, Ed Greshko wrote:
BTW, if you decide to go ahead with using views it would be helpful
if you have
a system on the "outside" for you to use to test queries.
As I understand it, all your "internal" systems have 10.0.0.X IP addresses.
Yup. Something else I just noticed that *might* be important...
dig @WS.LINUXLIGHTHOUSE.COM
LINUXLIGHTHOUSE.COM ns
; <<>> DiG 9.11.28-RedHat-9.11.28-1.fc33 <<>>
@WS.LINUXLIGHTHOUSE.COM
LINUXLIGHTHOUSE.COM ns
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39676
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 2
;; WARNING: recursion requested but not available
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 2da4654bcbbfcf2e20c614f6608f10fb5882579a181961d8 (good)
;; QUESTION SECTION:
;LINUXLIGHTHOUSE.COM. IN NS
;; ANSWER SECTION:
linuxlighthouse.com. 86400 IN NS
ws.linuxlighthouse.com.
;; ADDITIONAL SECTION:
ws.linuxlighthouse.com. 86400 IN A 108.220.213.121
;; Query time: 97 msec
;; SERVER: 108.220.213.121#53(108.220.213.121)
;; WHEN: Sun May 02 13:52:11 PDT 2021
;; MSG SIZE rcvd: 128
That says that
ws.linuxlighthouse.com is the one and only name server for the domain.
Whereas whois shows the more normal 2 minimum:
whois
LINUXLIGHTHOUSE.COM | grep ^Name
Name Server:
WS.LINUXLIGHTHOUSE.COM
Name Server:
NS3.ATTDNS.COM
So, even if you let
NS3.ATTDNS.COM pull the zone from you it might not work correctly if
they just use the zone you feed them without adding themselves to the mix with an NS
record.
--
Doug Herr
fedoraproject.org(a)wombatz.com