1

Recently I've started a bind9 NS host for the internal network of my school, providing a "CLEAN" NS Server. I want to forward almost all traffic to NS provided by ISP, but forward a few other domains (like a.com b.com c.com) and ALL SUB-DOMAINS (*.a.com/*.b.com/*.c.com) to Google Public DNS(8.8.8.8).

Have tried many solutions, such as:

  1. Use forwarders in options (NS by ISP), and specify zone for the other domains (NOT WORK, all query goes to NS provided by ISP)
  2. Use zone "." and the other domain, "." forwarded to NS provided by ISP, other domains forwarded to Google Public DNS (NOT WORK, only a.com/b.com/c.com are forwarded to 8.8.8.8, the others goes to NS provided by ISP)
  3. Use master zone ".", and add NS 8.8.8.8 for a.com/b.com/c.com (NOT WORK, all domain are failed to response)

How can I solve it?

Here is my named.conf:

options {
    directory "E:\Named\etc";
    listen-on port 53 { 10.147.100.16; 127.0.0.1; };
    allow-query { 10.0.0.0/8; 127.0.0.1; };
    allow-transfer {"none";};
    avoid-v4-udp-ports { range 1 32767; };
    recursion yes;
};

zone "a.com." IN {
    type forward;
    forward only;
    forwarders { 8.8.8.8; 8.8.4.4; };
};

zone "b.com." IN {
    type forward;
    forward only;
    forwarders { 8.8.8.8; 8.8.4.4; };
};

zone "c.com." IN { 
    type forward;
    forward only;
    forwarders { 8.8.8.8; 8.8.4.4; };
};

zone "." IN {
    type forward;
    forwarders { 219.141.136.10; };
};
Yifu Yu
  • 11
  • 2

1 Answers1

0

Have you tried removing "." from a/b/c.com zones?

Kveri
  • 161
  • 4