I am aware of explicitly defined DNS resource records are matched before any wildcard records. But how could I exclude a single subdomain from a wildcard without creating an explicit resource record for it?
I am using this for mail autodiscovery according to the Microsoft/Outlook scheme where the autodiscover resource record takes precedence over the _autodiscover._tcp SRV resource record. The autodiscover is no viable solution for us (as it would require to maintain a separate SSL certificate for each customer domain). If there is a wildcard CNAME in place, Outlook would still lookup autodiscover.mydomain.com instead of respecting the SRV record alternative.
_autodiscover._tcp 300 IN SRV 0 0 443 maildiscovery.example.com.
* 900 IN CNAME web.example.com.
To exclude autodiscover from the wildcard record, I cannot specify a RR for autodiscover as this one should not exist at all. So, there either must be a "void" type of RR (some kind of "explicit NXDOMAIN" record) or regex support for such a wildcard record.
The wildcard record is needed as we provide our customers with a quick way to add/remove subdomains without waiting for the DNS records to get propagated.
I hope there is a solution for this problem in Bind9. Thanks.
