Discussion:
DNS primary and secondary receiveing queries at the same time
Roberto Carna
2018-05-17 14:27:55 UTC
Permalink
OK, now I understand....thank you very much !!!

Regards.
Dear Tony, so you say that it's impossible what I want...
In this scenario that my two DNS servers respond queries at the same
time, suppose the primary server goes down....how do clients know that
they have to query the secondary DNS server at this moment?
Thanks again.
I always believed that all the client queries coming from Internet go
to the DNS primary server, and if it is down, just in this case go to
the DNS secondary server.
It can't happen that way because there's no way for a resolver to tell
which is which.
Tony.
--
Hebrides: Southeast 4, veering south 5 or 6, then veering west later. Moderate
or rough. Rain later. Good, occasionally moderate.
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
bind-***@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Roberto Carna
2018-05-17 14:23:22 UTC
Permalink
Dear Nico, my BIND servers are authoritative....they have delegated
several zones.
Hi Roberto,
Hi people, I've implemented two BIND9 servers for my company, one as
primary public DNS server and the other as secondary public DNS
server.
I always believed that all the client queries coming from Internet go
to the DNS primary server, and if it is down, just in this case go to
the DNS secondary server.
But it seems it is different than I believed....when I see the query
log file in primary and secondary DNS servers, I can see queries
coming from Internet in both servers....in other words, the two DNS
servers are being contacted all the time.
Is there any way to make DNS clients from Internet always contact my
primary DNS server and just if it is down the clients must contact the
secondary DNS server ???
are those servers Authoritative, or Recursive?
It’s not quite clear in your above explanation.
Cheers,
--
Nico
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
bind-***@lists.isc.o
Nico CARTRON
2018-05-17 14:29:55 UTC
Permalink
Hi Roberto,
Dear Tony, so you say that it's impossible what I want...
In this scenario that my two DNS servers respond queries at the same
time, suppose the primary server goes down....how do clients know that
they have to query the secondary DNS server at this moment?
Thanks again.
since your servers are Authoritative, clients won’t query them directly, but it’s rather Recursive DNS servers who will do so.
If one of your DNS server is unreachable, Recursive servers will try the next one(s).

Cheers,
Nico
I always believed that all the client queries coming from Internet go
to the DNS primary server, and if it is down, just in this case go to
the DNS secondary server.
It can't happen that way because there's no way for a resolver to tell
which is which.
Tony.
--
Hebrides: Southeast 4, veering south 5 or 6, then veering west later. Moderate
or rough. Rain later. Good, occasionally moderate.
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
bind-users mailing list
https://lists.isc.org/mailman/listinfo/bind-users
Warren Kumari
2018-05-17 14:28:24 UTC
Permalink
Dear Tony, so you say that it's impossible what I want...
In this scenario that my two DNS servers respond queries at the same
time, suppose the primary server goes down....how do clients know that
they have to query the secondary DNS server at this moment?
If they don't get an answer from the first one they try, they will try the
next one, and then the next one, etc...

W
Thanks again.
I always believed that all the client queries coming from Internet go
to the DNS primary server, and if it is down, just in this case go to
the DNS secondary server.
It can't happen that way because there's no way for a resolver to tell
which is which.
Tony.
--
Hebrides: Southeast 4, veering south 5 or 6, then veering west later.
Moderate
or rough. Rain later. Good, occasionally moderate.
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
https://lists.isc.org/mailman/listinfo/bind-users
--
I don't think the execution is relevant when it was obviously a bad idea in
the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair of
pants.
---maf
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
bind-***@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Warren Kumari
2018-05-17 14:23:23 UTC
Permalink
Hi people, I've implemented two BIND9 servers for my company, one as
primary public DNS server and the other as secondary public DNS
server.
I always believed that all the client queries coming from Internet go
to the DNS primary server, and if it is down, just in this case go to
the DNS secondary server.
Nope, you are incorrect -- there isn't really a "primary" and "secondary" -
that is poorly used terminology.
There are "masters" and "slaves" (also poor terminology) - new information
gets published on masters, and the slaves copy and serve that, but both
will get queries.
But it seems it is different than I believed....when I see the query
log file in primary and secondary DNS servers, I can see queries
coming from Internet in both servers....in other words, the two DNS
servers are being contacted all the time.
Is there any way to make DNS clients from Internet always contact my
primary DNS server and just if it is down the clients must contact the
secondary DNS server ???
Nope. Resolvers will choose between your servers at random (it's not
actually random, but close enough for this discussion).

W
Special thanks !!!
Robert
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
https://lists.isc.org/mailman/listinfo/bind-users
--
I don't think the execution is relevant when it was obviously a bad idea in
the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair of
pants.
---maf
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
bind-***@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Loading...