[H-GEN] Bind from behind a firewall
Greg Black
gjb at gbch.net
Thu Sep 11 04:20:04 EDT 2003
[ Humbug *General* list - semi-serious discussions about Humbug and ]
[ Unix-related topics. Posts from non-subscribed addresses will vanish. ]
On 2003-09-11, Rick Phillips wrote:
> hegwig.suntech.net.au is authorative and is the troublesome one -
> 203.63.166.202
> borgcube.hcit.com.au is the secondary - 203.63.166.2
Just one other little detail that you need to know here. Don't
think of something as a secondary name server when you're trying
to sort out DNS problems.
Although some DNS software uses that terminology, for quite
valid administrative reasons, the truth is that there is no such
thing as a secondary name server.
A name server is authoritative or it is not. All the name
servers for a domain (in your case, the two listed above) are
equally authoritative -- and so they must be kept in synch by
some method chosen by the sysadmin (e.g., AXFR, rsync, floppy
disk, etc.). But, from a user's perspective, it doesn't matter
which server is queried, the answers are authoritative and of
equal value.
That's why you break things really badly when you get this stuff
out of whack.
Cheers, Greg
--
Greg Black <gjb at gbch.net> <http://www.gbch.net/gjb.html>
GPG signed mail preferred; further information in headers.
--
* This is list (humbug) general handled by majordomo at lists.humbug.org.au .
* Postings to this list are only accepted from subscribed addresses of
* lists 'general' or 'general-post'. See http://www.humbug.org.au/
More information about the General
mailing list