Questions tagged [split-dns]

In computer networking, split-horizon DNS, split-view DNS, split-brain DNS, or split DNS is the facility of a Domain Name System (DNS) implementation to provide different sets of DNS information, selected by, usually, the source address of the DNS request.

This facility can provide a mechanism for security and privacy management by logical or physical separation of DNS information for network-internal access (within an administrative domain, e.g., company) and access from an unsecure, public network (e.g. the Internet).

Implementation of split-horizon DNS can be accomplished with hardware-based separation or by software solutions. Hardware-based implementations run distinct DNS server devices for the desired access granularity within the networks involved. Software solutions use either multiple DNS server processes on the same hardware or special server software with the built-in capability of discriminating access to DNS zone records. The latter is a common feature of many server software implementations of the DNS protocol (cf. Comparison of DNS server software) and is sometimes the implied meaning of the term split-horizon DNS, since all other forms of implementation can be achieved with any DNS server software.

Reference - Wikipedia

58 questions

vote

0 answers

Why Firefox doesnt work with split DNS / Host Overrides?

I have configured Host overrides in pfSense and other browsers like Chrome and Edge work fine but Firefox simply does not resolve giving "Unable to connect" error. This is the same on my laptop with fresh install of Firefox with default settings.…

internal-dns firefox split-dns

asked Sep 23 '21 at 14:15

DominicM

vote

1 answer

Proper behavior for a DNS Server when it is queried for a domain it doesn't control in the case of Split-Horizon DNS?

So one of our cloud providers offers a lower-latency, zero-rated "Internal Networking" option between VMs. The interfaces on the internal network are in the 10.x.x.x IP Space. When one of our servers queries the hostname of another server on the…

domain-name-system internal-dns tcpip split-dns

asked Dec 18 '20 at 22:44

Jonathan S. Fisher

votes

1 answer

Split-Zone DNS Windows Server 2016 not responding to external dns queries

I am attempting to setup a split-brain dns in my active directory domain. In a nutshell, two of my servers have both external and internal IP's. When a DNS query is performed for them, both the internal and external IP's are returned. I would like…

domain-name-system windows-server-2016 windows-dns split-dns

asked Dec 16 '19 at 06:28

zandermar18

votes

1 answer

GeoIP Split DNS Wrong 3rd View on Slave

Successfully configured Bind to host multiple views with TSIG with this guide. Problem is when I add a third view to the mix, things get weird. On each server, I have 3 views right now: USA Europe China The second I add the China view, the slave…

bind geoip split-dns

asked Sep 09 '18 at 15:35

emdk

votes

2 answers

Bind9 Zone File for Single Machine?

Setup is two Active Directory servers with DNS replication across two sites. For 'legacy' purposes, I need to redirect queries for the previously lone file server to each site's respective copy. Eg, 'BIGBOX' -> 192.168.100.2 for site A; 'BIGBOX' ->…

bind dns-zone split-dns

asked Jul 30 '18 at 04:34

canut

votes

2 answers

Sending emails to external mail server having same mailbox as exchnage

I have an exchange server 2016 with some local mailboxes and also have same mailboxes on Rackspace ( test@example.com on both exchange and rackspace ). Currently the MX record is pointed to rackspace server. I want to send a mail from exchange…

exchange email-server exchange-2013 split-dns

asked Feb 03 '18 at 17:33

Akhil krishna A

votes

1 answer

Split horizon based on IP returned by upstream DNS

In a split horizon setup, I'd like to use a DNS server running in the local network, to resolve DNS queries to the local IP of a server. I know about the possibility to setup a DNS server in a way that it always returns a local IP (different from…

linux domain-name-system split-dns

asked Jan 09 '18 at 15:51

Zulakis

4,191
14
44
75

votes

3 answers

private IP reverse DNS on public Server - A bad idea?

This question somewhat relates to Another question but the other way around. We use one domain with hostnames that resolve to public and hostnames that relsolve to private IPs. I agree to the answer to the aforementioned question that I don't see…

domain-name-system security internal-dns split-dns

asked Aug 28 '17 at 19:42

Clemens Bergmann

votes

1 answer

BIND: zone transfers with views configured not working

We use bind 9.8.2 on RHEL 6 servers. I have setup 2 test DNS servers using views. One is master one is slave. I have 2 views, one for "internal" and one for "external". Everything seems to work except that on my slave server my zone in "view A" is…

domain-name-system bind named-conf split-dns

asked Aug 18 '16 at 22:29

user53029

votes

1 answer

Win 2008 R2 @ records added to DNS

I have a small network with two DC's, each with a DNS server, and a single DHCP server. Both are running Windows Server 2008 R2 and standard Microsoft DNS services. Everything has been working fine for years. Our company website as undergone a…

domain-name-system windows-server-2008-r2 split-dns

asked May 13 '16 at 16:25

LeeG

votes

2 answers

Split DNS Bind9 views match-client request IP

I'm pulling my hair out over this one. I am trying to control/redirect specific traffic to use googles dns entries or to use a blackhole zone using BIND9 views on my ubuntu server. Psuedo: If request IP address is in LIST A, use googles DNS... else…

bind split-dns

asked Nov 15 '15 at 23:31

shinercoder

votes

1 answer

bind9 with selective NS forwarding

I'm trying to setup a bind9 server which can provide DNS lookups for both internal and external IP's. I have access to an external name server which can provide IP details of external IP's and I have knowledge of the internal IP's. E.g requests…

domain-name-system bind hosting split-dns

asked Mar 30 '15 at 08:12

user3229731

votes

1 answer

How can I get bind to return the same dns answer as DNSMASQ returns?

As Dnsmasq does not support Views, I have installed and configured bind9. Everything works, however I am noticing on a specific entry that my bind server is not returning the same answer/response as Dnsmasq did. How can I achieve this? Here is the…

domain-name-system bind dnsmasq dns-zone split-dns

asked Aug 06 '14 at 22:06

Kladskull

1,265
5
15
32

votes

2 answers

setting dns cache to give internal address responses to my domain requests for my externally accessible server

I'm having trouble trying to find anything on the internet explaining how to do this... I'm running Ubuntu 14.04 with repository current Bind9 I have a authoritative DNS server hosting my domain and my web/mail server on my network behind a single…

domain-name-system internal-dns ubuntu-14.04 split-dns

asked Jul 17 '14 at 01:39

RandomOzzy

votes

1 answer

Split-DNS with a zone being generated automatically

I want to run a DNS setup where the zones are managed on an internal Active Directory DNS server. There is a slave DNS server on the edge on the network which runs BIND (I am open to switching this, I read that Unbound may be better?). What I want…

domain-name-system bind split-dns

asked May 18 '14 at 10:52

jornane

1,096
1
8
25

Prev 1 2

4 Next