There are two problems.
1) Only an autoritative nameserver (tinydns, axfrdns) can refuse
recursion but dnscache is never authoritative.
2) No client / nameserver who can do his own recursive nameresolution
will ever ask dnscache.
Maybe you could setup your own root with tinydns and axfrdns and
write referals for xxxxx.zzz.yy giving their nameservers.
I am running my own root with tinydns and axfrdns but it works only
for TLDs like yy. I can not get it working for xxxxx.zzz.yy except
for zzz.yy refering back to my own server.
dnscache starts with the rootservers. I can tell it to start with
my own rootserver. But as soon as I refer outside it will never
ask me for anything below this domain again. If it did it was a bug.
Cheers
Peter and Karin
Dean Anderson wrote:
There is a way: Its called a referral. The server answers with a
response that contains only additional data with the addresses of the
authority servers.
Unfortunately, I don't know how to tell dnscache specifically to give
out a referral answer on a per domain basis. [at least, not without
altering code]. dnscache is meant to be a recursor, and a referral is
what happens when recursion is disabled.
I have to wonder why you would want to have your recursor refuse
recursion on a per-domain basis...[url redirection maybe??] and if there
isn't a better way to do that without mucking in with the recursor.
Good luck,
--Dean
On Tue, 5 Jun 2007 gustavo.rios@ufv.br wrote:
Dear gentleman,
is there any way i could prevent dnscache from answering queries for
domain xxxxx.zzz.yy and instead set it to tell the client to do it
itself on address a.b.c.d ?
Thanks in advance.
--
Peter and Karin Dambier
Cesidian Root - Radice Cesidiana
Rimbacher Strasse 16
D-69509 Moerlenbach-Bonsweiher
+49(6209)795-816 (Telekom)
+49(6252)750-308 (VoIP: sipgate.de)
mail: peter@cesidianroot.com
mail: peter@echnaton.arl.pirates
http://www.cesidianroot.com/
http://iason.site.voila.fr/
https://sourceforge.net/projects/iason/
|