DNS SLAVE

[cc]

hi

on my linux DNS master for de.domain.net,
I've created a SLAVE ZONE for the root domain: domain.net

Code:

options {
forwarders { 83.X.X.10; 83.X.X.11; 83.X.X.12; };
forward first;
}

zone "domain.net" {
type slave;
file "/var/cache/bind/domain.net.hosts";
masters {
10.X.X.20;
10.X.X.21;
};
};

it works well, the root Zone will be synchronized, but I have following problem:

Master DNS Servers will be reached over the vpn tunnel.
if the vpn tunnel goes down, I cannot nslookup any server from the root Zone.

howto make this zone available when the vpn tunnel is down ?

I have BIND 9.2.4 running on linux
DNS Master on the remote site is WIN2000

our slave dns servers are local,
but dns masters are reachable only via vpn tunnel.

greetings
cc

[EvilC0P]

did u set ur DNS server properly in ur clients?
DNS #1 should b your Win2k
DNS #2 the slave one.

if client cant reach Win2k, they ask the linux one.

and maybe reverse that for the LAN part on the same side of the Bind server, put the slave as their primary DNS. why make the packet travel over the vpn for a lil dns request when they got a slave right near them.