[Pdns-users] NATIVE zones and slave operation
Heidrich Attila
attila at heidrich.hu
Thu Sep 16 06:46:57 UTC 2004
2004-09-15, sze keltezĂŠssel 17:17-kor bert hubert ezt ĂÂrta:
> :-) - I did not read all of it, but you might want to consider the 'stealth
> master' approach.
Do I understand well?
I configure my db master (called it Main server) to have a certain SLAVE
zone.
I tell my customer to set NS RRs pointing to the db replicas
AND an also-notify {my_main_server;); as well.
This way I have to permit zone transfers to tha Main, but it is not
propagated on the internet, just act as a SLAVE in order to have the
SLAVE data replicated in all the db instances. The notifications will
also address the replicas, but will have no effect, but a few error
messagets becouse of the R/O database.
???
Better than nothing!! ;-) I ask the security people...
anyway: what if my customer is unable to set also-notify? Is there a
thing like this in PDNS f.e.??
--
Heidrich Attila <attila at heidrich.hu>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20040916/94337501/attachment-0001.html>
More information about the Pdns-users
mailing list