[rbldnsd] Use rbldnsd behind bind9
Michael Tokarev
mjt at tls.msk.ru
Tue Apr 13 20:27:54 MSD 2010
13.04.2010 13:36, meepmeep @ Fantasya.org wrote:
[]
> Now, I tried to use this rbldnsd from "outside", and I have a problem ...
> I add 2 entries in my DNS configuration:
>
> testbl.mydomain.com <http://testbl.mydomain.com> IN NS x.x.x.229 (direct
> access to rbldnsd)
> testbl1.mydomaine.com <http://testbl1.mydomaine.com> IN NS x.x.x.226
> (direct access to bind)
>
> I add this on my bind configuration :
> zone "testbl1.mydomain.com <http://testbl1.mydomain.com>" IN {
> type forward;
> forward first;
> forwarders {
> x.x.x.229 port 53;
> };
>
>
> (in every case, bind should transfer the request to rbldnsd on x.x.x.229)
I'd suggest to build real delegation to your x.x.x.229 from
the parent zone. Like this:
zone "mydomain.com" { type master; file mydomain; };
mydomain:
...
testbl NS rbldns
rbldns A x.x.x.229
this way, it will know to query x.x.x.229 for *.testbl.mydomain.com.
For local queries it will recurse, for "outside" queries, where
recursion is disabled, it will return referrer to x.x.x.229
instead.
And don't forget to add the same NS record to rbldns zone,
in a form
$NS rbldns.mydomain.com
(add more servers to spread the load and protect from downtimes).
/mjt
More information about the rbldnsd
mailing list