bind9 resolve ip.example.com to ip

the company has changed to Zscaler private access, and now connections for an IP are no longer working.

What is working, is a hostname, as it get’s translated to 100.64.x.y and then routed to the drop off in the datacenter.

My question now: is there a way to tell bind, to resolve something like 10.1.1.1.ip.domain.com to 10.1.1.1 without adding 16M records? Something like “* IN A *” is not working?

Thanks

DNS Spoofing Bind9 DNS Server

I configure ubuntu server 18.04 as master DNS server. zone ==> google.com

; ; BIND data file for local loopback interface ; $  TTL    12h  @   IN  SOA ns1.google.com. root.google.com. (                   2     ; Serial              604800     ; Refresh               86400     ; Retry             2419200     ; Expire              604800 )   ; Negative Cache TTL ; @     IN    NS  ns1.google.com. ns1   IN    A   193.168.10.1 www   IN    A   <fake IP> mail    IN  A   <fake IP>   

I configure client to use this server as DNS server.

when I enter mail.google.com in client’s browser i got ssl ERR. how browser understand this issue. client’s browser is up to date.

How do I modify DNS-posts/zones in Bind9 on a Samba4-server (Zentyal?)

I’m running a Zentyal Samba4 server as a DNS server as well as an Active Directory domain controller. I’ve been having some issues lately with DNS. There are 2 ways that I know of to update DNS on that server, either via the Zentyal GUI, or by launching Windows’ DNS management tool (runas /netonly /user:domain.com\Administrator cmd.exe). I’ve noticed that only the latter actually works, and that modifying and creating DNS-posts via Zentyal’s GUI has no effect whatsoever (I have tried looking at the logs at /var/log/samba/* and /var/log/zentyal/*, but to no avail).

When I check what is going on in /etc/bind/named.conf.local (as Zentyal uses BIND9), I see the following:

// Generated by Zentyal  acl "trusted" {     localhost;     localnets; };  acl "internal-local-nets" {     10.16.10.0/22; };  dlz "AD DNS Zone" {     database "dlopen /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so"; }; 

Which leads me to believe that DNS is being managed by a binary file/application.

Now, the big question is, suppose I would like to make updates on the DNS-server from a non-Windows computer, how do I do that? I’ve been trying to look for the appropriate CLI-commands, but I hadn’t found anything. Surely there is a way to do that from within the server?

Any insights would be very appreciated!