Maintained by: NLnet Labs

[Unbound-users] Unbound and Bind Views

Hayward, Bruce
Mon Oct 25 15:18:20 CEST 2010


Hey

On specific resolvers we use bind views to direct those who come from an IP in a specific CIDR to use a specific zone.  We have two cases of these views.

We also use views to isolate those that should only use internal zones versus those that should not use internal zones (external customers)

Those that do not come from an IP in a specific CIDR use a global zone.

"Views" were introduced in Bind 9.

http://oreilly.com/pub/a/oreilly/networking/news/views_0501.html 

Bruce

Bruce Hayward, MTS Allstream Inc., (p) 204-958-1983 (e) bruce.hayward at mtsallstream.com 


-----Original Message-----
From: unbound-users-bounces at NLnetLabs.nl [mailto:unbound-users-bounces at NLnetLabs.nl] On Behalf Of Ondrej Surý
Sent: October 21, 2010 9:52 AM
To: unbound-users at unbound.net
Subject: Re: [Unbound-users] Unbound and Bind Views

Hey Bruce,

I think that it's pretty well documented in the mail you sent a
link...  you setup two unbound instances and mangle the traffic from
set of ip addresses using standard firewall/nat features your
operating system has.

Anyway maybe if you can explain what you are trying to accomplish then
we can propose alternative without views.

Ondrej

On Thu, Oct 21, 2010 at 15:32, Hayward, Bruce
<Bruce.Hayward at mtsallstream.com> wrote:
>
> One area of Bind that we use is views to direct traffic.
>
> Before we can switch to Unbound, we would need a means of emulating
> views.
>
> In researching this (on Google) I came across a thread discussing this:
> http://www.mail-archive.com/unbound-users@unbound.net/msg00337.html
>
> Has anyone documented steps to accomplish this?
>
> Thanks
>
> Bruce
>
> Bruce Hayward, MTS Allstream Inc., (p) 204-958-1983 (e)
> bruce.hayward at mtsallstream.com
>
>
>
>
> Is it really necessary to print this email?
>
> MTS ALLSTREAM INC. CONFIDENTIALITY WARNING: This email message is confidential and intended only for the named recipient(s).  If you are not the intended recipient, or an agent responsible for delivering it to the intended recipient, or if this message has been sent to you in error, you are hereby notified that any review, use, dissemination, distribution or copying of this message or its contents is strictly prohibited.   If you have received this message in error, please notify the sender immediately and delete the original message.  If there is an agreement attached with this message, such agreement will not be binding until it is signed by all parties named therein.
>
> _______________________________________________
> Unbound-users mailing list
> Unbound-users at unbound.net
> http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users



-- 
Ondřej Surý <ondrej at sury.org>

_______________________________________________
Unbound-users mailing list
Unbound-users at unbound.net
http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users