DNS bind zone queries



  • Hello,

    I have two internal interfaces that am I trying to setup bind dns zones for. These interfaces are on two different subnets and domains. I am having trouble setting up bind DNS zones such that clients on 192.168.15.0/24 (internal.lan) can query records for 192.168.10.0/24 (internal.guest).

    acl internal.lan  {
            localhost;
            192.168.15.0/24;
    };
    
    acl internal.guest {ec
       localhost;
       192.168.10.0/24;
    };
    

    Whenever I add the internal.lan acl to the match-clients of the internal.guest view, those clients can no longer lookup records on the 192.168.15.0/24 subnet. What do I need to do to allow the lan clients to query both domains?


  • Rebel Alliance Global Moderator

    why don't you just use an acl that includes both your networks - say 192.168/16

    Are there people say on 192.168.11/24 that you do not want to be able to query?  YOu can include more than 1 network in an ACL, you can list as many networks or /32 host addresses as you want.. Sure there some limit but its more than 2 that is for sure.