Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.protocols.dns.bind > #15727
| Path | csiph.com!weretis.net!feeder7.news.weretis.net!paganini.bofh.team!news.killfile.org!usenet.stanford.edu!not-for-mail |
|---|---|
| From | Grant Taylor <gtaylor@tnetconsulting.net> |
| Newsgroups | comp.protocols.dns.bind |
| Subject | Re: What is the proper way to delegate to a private / hidden sub-domain? |
| Date | Wed, 6 May 2020 14:10:56 -0600 |
| Lines | 123 |
| Approved | bind-users@lists.isc.org |
| Message-ID | <mailman.359.1588795849.942.bind-users@lists.isc.org> (permalink) |
| References | <e528b484-5f6e-d45e-58a8-5855cc9b5634@tnetconsulting.net> <EE6093F1-AAD6-4A96-885D-C1355761BF12@s-carlsen.dk> <b2bee524-36c1-180a-6c31-215ffe7a30f0@tnetconsulting.net> <CA+nkc8AVkt5LO8p-LS65E3mGkvzmjtech18-EHQ-zTWhmEUEjQ@mail.gmail.com> <48bed45a-9d31-b7c4-b61c-3c68472b4f00@tnetconsulting.net> |
| NNTP-Posting-Host | lists.isc.org |
| Mime-Version | 1.0 |
| Content-Type | multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms000400000300080804000805" |
| X-Trace | usenet.stanford.edu 1588795864 31285 149.20.1.60 (6 May 2020 20:11:04 GMT) |
| X-Complaints-To | action@cs.stanford.edu |
| To | bind-users@lists.isc.org |
| Return-Path | <gtaylor@tnetconsulting.net> |
| X-Original-To | bind-users@lists.isc.org |
| Delivered-To | bind-users@lists.isc.org |
| DKIM-Signature | v=1; a=rsa-sha256; c=simple/simple; d=tnetconsulting.net; s=2019; t=1588795858; bh=s92id+VTkalrsdi7+EJJcZD/DHrtr8jXGW8GyyzkeHQ=; h=Subject:To:References:From:Message-ID:Date:User-Agent: MIME-Version:In-Reply-To:Content-Type:Cc:Content-Disposition: Content-Language:Content-Transfer-Encoding:Content-Type:Date:From: In-Reply-To:Message-ID:MIME-Version:References:Reply-To: Resent-Date:Resent-From:Resent-To:Resent-Cc:Sender:Subject:To: User-Agent; b=QS2+pF17GOcOhtvCqOwx7lV9c9D/t8F0LvFzWYyuawtsiNjaR2i2ISriUVlK1q6BD jIV6sn15wn5l+LVvyYTZ4P+Uwe54J1uqsr6NjLhuJA8E/Y8LbXXVuJUr06fp4kvgoF CvoWlRAoiXEaSCvaFCHJ21u9EdoGf/S+w+7PDzuE= |
| User-Agent | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:68.0) Gecko/20100101 Thunderbird/68.7.0 |
| In-Reply-To | <CA+nkc8AVkt5LO8p-LS65E3mGkvzmjtech18-EHQ-zTWhmEUEjQ@mail.gmail.com> |
| X-Spam-Status | No, score=-2.2 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,DKIM_VALID_EF,GPG_SIGNED,RCVD_IN_DNSWL_NONE, SPF_HELO_PASS,SPF_PASS autolearn=disabled version=3.4.2 |
| X-Spam-Checker-Version | SpamAssassin 3.4.2 (2018-09-13) on mx.pao1.isc.org |
| X-BeenThere | bind-users@lists.isc.org |
| X-Mailman-Version | 2.1.29 |
| Precedence | list |
| List-Id | BIND Users Mailing List <bind-users.lists.isc.org> |
| List-Unsubscribe | <https://lists.isc.org/mailman/options/bind-users>, <mailto:bind-users-request@lists.isc.org?subject=unsubscribe> |
| List-Archive | <https://lists.isc.org/pipermail/bind-users/> |
| List-Post | <mailto:bind-users@lists.isc.org> |
| List-Help | <mailto:bind-users-request@lists.isc.org?subject=help> |
| List-Subscribe | <https://lists.isc.org/mailman/listinfo/bind-users>, <mailto:bind-users-request@lists.isc.org?subject=subscribe> |
| X-Mailman-Original-Message-ID | <48bed45a-9d31-b7c4-b61c-3c68472b4f00@tnetconsulting.net> |
| X-Mailman-Original-References | <e528b484-5f6e-d45e-58a8-5855cc9b5634@tnetconsulting.net> <EE6093F1-AAD6-4A96-885D-C1355761BF12@s-carlsen.dk> <b2bee524-36c1-180a-6c31-215ffe7a30f0@tnetconsulting.net> <CA+nkc8AVkt5LO8p-LS65E3mGkvzmjtech18-EHQ-zTWhmEUEjQ@mail.gmail.com> |
| Xref | csiph.com comp.protocols.dns.bind:15727 |
Show key headers only | View raw
[Multipart message — attachments visible in raw view] - view raw
On 5/6/20 1:44 PM, Bob Harold wrote: > Good questions. :-) > I think one possibility (to avoid anycast) is to have an internal and > external view for the "example.net" zone, so it can delegate the lab > zones to different servers internally and externally. But how do you do that if the internal and external views are on different servers with completely different IPs? I ask because now you're back to the same issue, just at the parent domain: How does the net zone delegate to different example zones depending on if the client is internal or external. I don't see any options that avoid anycast. > But that can make the "example.net" zone harder to manage. It would > be easier to have a split view for "split.example.net" and lab zones > "lab#.split.example.net", if the extra level was acceptable. Please elaborate on what you mean by "split view" hear. I'm used to "split view DNS" being tantamount to what I would use views for. Which, as previously stated, won't work in this case because the different views are hosted on different servers. -- Grant. . . . unix || die
Back to comp.protocols.dns.bind | Previous | Next — Next in thread | Find similar | Unroll thread
Re: What is the proper way to delegate to a private / hidden sub-domain? Grant Taylor <gtaylor@tnetconsulting.net> - 2020-05-06 14:10 -0600 Re: What is the proper way to delegate to a private / hidden sub-domain? "John Levine" <johnl@iecc.com> - 2020-05-06 16:21 -0400
csiph-web