I have DNS server (linux box with bind9), which is authorative for some domains, and forward all other queries to external DNS server of my ISP provider.
So far no problem.
Now I want that queries about some specific domains were forwarded to my internal DNS server, f.e.:
zone "some_domain" {
type forward;
forwarders {
some_internal_dns_ip;
};
};
So far still no problem, all works ok.
But then, I want also to forward some reverse DNS queries to my internal DNS. So, I have added:
zone "16.172.in-addr.arpa" {
type forward;
forwarders {
some_internal_dns_ip;
};
};
And this doesn't work as I expect. Queries about "16.172.in-addr.arpa" (for example
1.16.172.in-addr.arpa) are resolved correctly, but reverse queries about full address (for example 1.1.16.172.in-addr.arpa) are not. I understand that my server should use here some recursive query, but could not configure it. I have already tried adding following options
recursion yes;
allow-recursion { 127.0.0.1; };
allow-recursion-on { 127.0.0.1; };
but with no success . (I have used loopback address here, because I need this functionality only for my DNS host, and not for its clients)
Any suggestions?
Best Answer
This is because bind creates the "empty zones" by default. So, your name server is the master for "16.172.in-addr.arpa." zone and return with "NXDomain" for your answers.
If you define "empty-zones-enable no;" in named.conf this will work as you expect.