DNS problems this morning -

[Tim]

Tim:
> >It may well work fine, if all you ever ask the name servers to do is
> >resolve outside internet addresses.  But, if you have a LAN that
> >communicates with things within the LAN, by name, then *all* name
> >queries need to be answered by your LAN DNS server, as no external DNS
> >server can answer any queries about your internal LAN addresses, and
> >there's no way for you to say resolve this name from here, and the rest
> >from anywhere.  Your only solution to that conundrum is putting LAN
> >addresses in the hosts file, because that will be queried before asking
> >a DNS server.  Which rapidly becomes a nuisance on largish, or expanding
> >networks.  And doesn't work on networks with dynamically changing
> >addresses.

Bruno Wolff III:
> You can use tinydns and dnscache to work around this. I think there are 
> also ways to do it with bind, but I don't use it and can't say for sure.

BIND allows you to do all sorts of magic tricks about how it answers
queries, but you don't have to do anything fancy to make BIND handle
local and external addresses properly.  You just put your local
addresses in as normal records, and it answers them fine.  It goes out
to the root servers, as a DNS server should to, to answer queries about
addresses it doesn't know about.


-- 
[tim at localhost ~]$ uname -rsvp
Linux 3.6.6-1.fc17.x86_64 #1 SMP Mon Nov 5 21:59:35 UTC 2012 x86_64

All mail to my mailbox is automatically deleted, there is no point
trying to privately email me, I will only read messages posted to the
public lists.