Thu, 19 Aug 2004
forward first
Found out yesterday that if you configure BIND9’s named to use forwarders, it
will timeout and fail if it can’t reach any of the forwarders. I guess if
you’re behind a firewall this may be what you want, but in general I’d imagine
that you’d want your local named to try the lookup if it can’t get to the
forwarders as a last resort. Adding a forward first; clause to your
options stanza causes named to try the forwarders first, but if they don’t
respond in time it will perform the DNS lookup itself.
I’ve modified /etc/bind/named.conf to do this, as I think it’s a better default behavior.