www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

Restrict DNS forwarding for local addresses

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> Linux and Networking
View previous topic :: View next topic  
Author Message
kyleb



Joined: 18 Nov 2009
Posts: 1

PostPosted: Wed Nov 18, 2009 4:37 pm    Post subject: Restrict DNS forwarding for local addresses Reply with quote

I have Zeroshell up and running.. .it's working great! I have one small issue with DNS I'd like to resolve.

I have Zeroshell set as the DNS resolver for all my internal computers. It gives the internal addresses for all hosts on our domain. I also have a forwarder set up for ANY domain to OpenDNS to handle other DNS.

I would like hosts not found in our local domain to result in NXDOMAIN. However, instead, they are forwarded out to OpenDNS. Is there a way to restrict the forwarding of the local domain requests, but let all the others go out? Thanks for any suggestions you have.
Back to top
View user's profile Send private message
ppalias



Joined: 17 Dec 2008
Posts: 1151
Location: Athens, Greece

PostPosted: Thu Nov 19, 2009 2:44 pm    Post subject: Reply with quote

What you ask is working in my setup.
karavida is not a valid name, however rofos is.
Code:
> karavida.trendy.awmn
Server:  [10.14.149.1]
Address:  10.14.149.1

*** [10.14.149.1] can't find karavida.trendy.awmn: Non-existent domain
> rofos.trendy.awmn
Server:  [10.14.149.1]
Address:  10.14.149.1

Name:    rofos.trendy.awmn
Address:  10.14.149.1

Zone trendy.awmn as well as its reverse are master in my ZS and for ANY other I forward to the DNS servers of my provider.
My DNS options are
Code:
recursion yes;
allow-query {10.0.0.0/8;127.0.0.0/8;};

Hope this helps.
Back to top
View user's profile Send private message Yahoo Messenger MSN Messenger
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> Linux and Networking All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group