possible patch for implementing split DNS
Julian Elischer
julian at elischer.org
Mon Aug 28 19:39:31 UTC 2006
Doug Barton wrote:
>Julian Elischer wrote:
>
>
>>I need some processes to look elsewhere for DNS information from where
>>the rest of the system looks.. This patch seems to me a simple solution.
>>We over-ride where the resolver looks for resolv.conf using an
>>environment variable. This would allow me to reset this to an application
>>specific config file that specifies a different server.
>>
>>Anyone got better ways fo doing this?
>>
>>
>
>Run the special processes in a jail with its own resolv.conf? My gut
>reaction to your suggestion is negative, but I'm having a hard time
>articulating a solid reason why.
>
>
I need a couple of processes to go to different nameservers for the same
names..
for example running 2 proxy servers, one taking requests from the inside
and one from the outside.
I want them to see two different universes so makign them source
different resolv.conf allows me to give
them different default domains and query different servers.
as well as use different timeouts. I can not run them in different jails.
they still need to listen on overlapping addresses for different ports etc.
ALmost all other services (e.g. inetd,natd,sshd, etc.etc.) allow you to
specify a different config file
so that you can supply different services to theinside and outside but
it all falls appart
if they still are forced to use the same DNS server and can not provide
a differentiated service
for that reason.
>Perhaps if you described your problem in more detail, it would be easier to
>work around it, but I can't help thinking that there are better ways to
>solve this problem.
>
>Doug
>
>
>
More information about the freebsd-net
mailing list