Web lists-archives.com

Re: [Samba] Conditional forwarders




Hai, 

> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces@xxxxxxxxxxxxxxx] Namens 
> Hénoch Hervé via samba
> Verzonden: donderdag 13 december 2018 13:11
> Aan: Rowland Penny; samba@xxxxxxxxxxxxxxx
> Onderwerp: Re: [Samba] Conditional forwarders
> 
> I've asked this question because it is the first step before domain
> approbation.
> 
> Several questions in my message :
> 
> 1) With Samba AD, can we via "Windows DNS Tools" set a conditional
> forwarders ?

No, you need bind9_dlz for and edit the files manualy. 

> 
> 2) If yes, is it possible with samba internal dns ?
No, see 1. 

> 
> 3) If we can't use "Windows DNS Tools" do we have another method to do
> "conditional forwarder" ?
Yes, see 1. 


And per example, its pretty simple also. You need something like this. 

zone "internal1.domain.tld" {
    type forward;
    forwarders { 192.168.0.1; 192.168.0.1; };
};

zone "0.168.192.in-addr.arpa" {
    type forward;
    forwarders { 192.168.0.1; 192.168.0.1; };
};

zone "domain.tld" {
    type forward;
    forwarders { 192.168.0.1; 192.168.0.1; };
// ! Please note. If this is a mail relay. Point it tot and internet DNS or get stuck with SPF/DKIM/DMARC
// for a proxy, you can set it to internal dns or external dns, depending on you needs. 
//    forwarders { 8.8.8.8; 62.212.131.101; };

And dont forget to adjust krb5.conf for a multi kerberos domain, if you use that. 

If you have a lot of request, setup caching and forwarding dns proxy. 

Greetz, 

Louis



-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba