Maintained by: NLnet Labs

[Unbound-users] Querying all of stub-zone nameservers or trasparent stub-zone

W.C.A. Wijngaards
Mon Nov 23 11:48:11 CET 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Andrian,

You could use $INCLUDE in the zonefile for the two NSD's to read the
common data from the same file.  Then you only have to edit one file.

If you want to get fancier than that, m4 is very powerful.

The feature for unbound sounds like bloat (above workaround easier).  If
you really, really want it you could use the python module for unbound
to code this behaviour (for a specific subdomain).  If you do, perhaps
we should start to accumulate nice python bits in contrib...

Best regards,
   Wouter

On 11/07/2009 12:55 PM, Andrian Nord wrote:
> Greetings
> 
> I'm using unbound for my local home network. Problem is in that I'm
> using virtual servers for various tasks on my server, so I have big
> enough zones to think about reducing mantaince work.
> 
> Currently i'm using two NSDs - one for 'public' zone data, which
> contains all AAAA and public A records, and one for 'private' zone data,
> that is - for ips like 192.168.*. (Yes, I'm trying to do so-called
> 'split-horizon')
> 
> Problem is, that for every new record, even SRV or CNAME, I'm forced to
> add them to both servers and, what is much worse, I'm forced to
> dublicate all AAAA records, as unbound queries only one server specified
> for stub-zone and returns what it returns =).
> 
> So, here comes my question - is it somehow possible to make unbound 
> query all specified nameservers in specified order, accumulating result,
> but keeping first positive answer, if another is given (maybe through
> some additional script or module)? Or, maybe, there could be
> 'transparent' stub-zone, like local-zones (same idea) (that seems to how
> dnsmasq operates)?
> 
> Thanks.
> _______________________________________________
> Unbound-users mailing list
> Unbound-users at unbound.net
> http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAksKaGsACgkQkDLqNwOhpPhZsgCfZYv8zLQE+FoEjeHMF9qK19yr
ERUAn2rV5BNJNNQUiZeJcu2EBuHKlR3H
=DQH2
-----END PGP SIGNATURE-----