From owner-freebsd-isp  Mon Oct 18 13:45:58 1999
Delivered-To: freebsd-isp@freebsd.org
Received: from pau-amma.whistle.com (pau-amma.whistle.com [207.76.205.64])
	by hub.freebsd.org (Postfix) with ESMTP id AFE7315156
	for <freebsd-isp@FreeBSD.ORG>; Mon, 18 Oct 1999 13:45:55 -0700 (PDT)
	(envelope-from dhw@whistle.com)
Received: (from dhw@localhost)
	by pau-amma.whistle.com (8.9.2/8.9.2) id NAA77485;
	Mon, 18 Oct 1999 13:45:54 -0700 (PDT)
Date: Mon, 18 Oct 1999 13:45:54 -0700 (PDT)
From: David Wolfskill <dhw@whistle.com>
Message-Id: <199910182045.NAA77485@pau-amma.whistle.com>
To: freebsd-isp@FreeBSD.ORG, leifn@neland.dk
Subject: Re: named telling the truth, but not the whole truth.
In-Reply-To: <Pine.BSF.4.05.9910182221120.26158-100000@arnold.neland.dk>
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

>Date: Mon, 18 Oct 1999 22:29:54 +0200 (CEST)
>From: Leif Neland <leifn@neland.dk>

>Is there a way to tell bind8 not to tell the world the same as it tells a
>local server?

I think so, but even when accomplishing your stated objective, I've not
found it necessary.

>Specifically, I have some hosts, which do dialin and pick up their mail by
>ETRN. So their dns is:
> some.dom 	MX	100 our.mastermail.server.
> some.dom	MX	10  their.dialin.server.

>Is there a way not to announce the lowest MX-record to the world, but only
>to our.mastermail.server?

A couple of issues come to mind:

* First, it's not necessry for the resolver on a given host (that is
  running a nameserver) to actually use the (local) nameserver.  This is
  the observation that is central to the "split DNS" function found
  often in firewalls -- the externally visible machine runs a nameserver
  (for external consumption), but relies on an internal nameserver for
  hostname resolution for local processes.

* In sendmail (dunno about other MTAs), it's possible to force
  suppression of the MX lookup by either placing the hostname part of the
  address is square brackets or by including the F=0 flag on the mailer
  (delivery agent).  The latter is generally preferred.

>I'd rather not have a separate named for our.mastermail.server; it would
>be hell to administer.

I'm sure you have (good) reasons for that assessment, but I confess that
they aren't apparent to me at this time.

Cheers,
david
-- 
David Wolfskill		dhw@whistle.com		UNIX System Administrator
voice: (650) 577-7158	pager: (888) 347-0197	FAX: (650) 372-5915


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message