[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Newbie DNS ? for own network

Subject: Re: [cobalt-users] Newbie DNS ? for own network
From: Paul Warner <pwarner@xxxxxxxxxxxxxxxxxx>
Date: Wed Aug 21 17:19:01 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Jim-

Here are some things to look at - I'm not completely sure I understand
your setup, though.

#  RAQ's resolver is configed through edits to /etc/resolv.conf.  These
   are the IP addresses of DNS servers YOUR MACHINE will use to
   resolve names into IP addresses.

#  DNS records to point the outside world TO YOUR MACHINE can
   be left on register.com or moved to your RAQ.  They're both GUIed
   so I'd probably leave them on register.com - someone else deals
   with bind updates, better bandwidth/location than a cable modem,
   etc.

#  Assuming you leave them on register.com you need an 'A' record
   that points to the static IP from your cable co.  you may want to
   define as shown below to resolve the domain w/o a www to the
   same server (1st record).
   nomecity.org.       in      a      xxx.xxx.xxx.xxx
   www.nomecity.org.       in      a      xxx.xxx.xxx.xxx
   mail.nomecity.org.       in      a      xxx.xxx.xxx.xxx

#  Next you need to define who handles mail for your domain with an
   MX record:
   nomecity.org.       in      mx      30 mail.nomecity.org.
   all mail for nomecity.org will be delivered to mail.nomecity.org.  The
   30 is a preference value that can be used if you have multiple
   servers to handle mail.  These would be PHYSICAL servers not
   different names on the same box, as it would not be usefull to try
   and connect to the same unreachable box with a different name <g>.

#  Finally, you will need to do some GUI stuff on your RAQ.  First, go
   to the SiteAdmin -> ControlPanel -> Email and then make sure
   that the addresses (IP and names) for 'Relay for following...' has
   all IPs or host/domain names that will be SENDING via your server.
   If you spec too broad, then every spammer on your cable provider's
   net will be able to use your server to send.

#  Next, make sure that www.nomecity.org, nomecity.com, and
   mail.nomecity.org are all listed in 'Host/Domain Aliases'.

#  Lastly, go to the SiteAdmin and check SiteSettings to ensure that
   www is 'Host Name', nomecity.org is 'Domain Name' and 'Web
   Server Aliases', and mail.nomecity.org is 'Email Server Aliases'.

The changes on register.com can take as long as 48-hours to
propogate to the world (yourself included).  If you want to setup DNS
on the RAQ for INTERNAL use to reflect local hosts behind firewall,
you can treat the server as PRIMARY for nomecity.org and post
hostname/IP pairs of firewalled devices.  This will provide users with
a local DNS server.  Users will use this devices IP as their default
resolver.  If you ARE NOT, then disable DNS on the RAQ as you
won't be using it.

Clear as mud?

Here's what I got on a DIG:
; <<>> DiG 8.3 <<>> nomecity.org
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
;; QUERY SECTION:
;;      nomecity.org, type = A, class = IN

;; ANSWER SECTION:
nomecity.org.           1D IN A         24.237.254.24

;; AUTHORITY SECTION:
nomecity.org.           1D IN NS        dns17.register.com.
nomecity.org.           1D IN NS        dns18.register.com.

;; Total query time: 5010 msec
;; WHEN: Wed Aug 21 20:16:50 2002
;; MSG SIZE  sent: 30  rcvd: 98

I am also able to see the Nome Public Schools web page!  It looks like your
issue may be that your resolver on the RAQ is looking to itself for
direction
when it should be looking at your cable provider's DNS server (optimum
speed).

Lemme know if I can clarify or help, but I'm in EDT and won't be up all
night!

-- Paul

[]_.-' (Q_,._ _       Paul Warner, President
`(*)_[1]___(*)Z>  Winners Circle Design Group
                             http://winners-circle.com


----- Original Message -----
From: "Jim Dory" <engineer@xxxxxxxxxxxxx>
To: "Cobalt Users List" <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Wednesday, August 21, 2002 5:53 PM
Subject: [cobalt-users] Newbie DNS ? for own network


> I've been hesitant to post here because I'm sure the answer is in the
> archives or the DNS webpages. I've been looking, please believe me. And
> also checking the newsgroups pertinent to DNS. But I'm just not getting
> it and thought someone who doesn't mind would offer some advice..
> meanwhile I continue to research but my job duties don't allow enough
> time for it.
>
> I'm setting up a Raq4r for email/webserving. I was pretty proud of
> myself because yesterday I got my email working. But I tried it today
> and now it doesn't, don't know what changed overnight. But I think the
> problem may be dns because in maillog I get 'name does not resolve' type
> messages.
>
> The Raq is behind a firewall (which could be the problem but thought I
> better get a handle on DNS first). The email/web raq is on the DMZ of
> the firewall. I've registered a test domain name of www.nomecity.org
> with www.register.com before I switch over our 'real' domain from a
> local ISP. We are using a cable modem for our internet. I named the
> server host[www] domain [nomecity.org].
>
> So register.com has DNS servers. On my GUI, under Server Management /
> Control Panel / Network I have tried adding in their DNS IP address.
> Actually it is dns17.register.com but I got the IP number by using
> Neotrace.  Apparently it must be an IP number entered here. That number
> was 216.21.234.79. At the command line of the raq, if I type
> [admin admin]$ dig nomecity.org  any    (or any known domain on the
> internet)
> I get
>  ; <<>> DiG 8.3 <<>> nomecity.org any
> ;; res options: init recurs defnam dnsrch
> ;; res_nsend to server default -- 216.21.234.79: Connection timed out
>
> I've also tried the cable company's supplied dns server address with
> same results.
>
> (I've made sure that port 53 is not being blocked.)
>
> Under Control Panel / Services / DNS server / parameters I have added
> records using the local network IP number of the raq. At register.com I
> have the records there pointing towards the cable co's supplied static
> IP number (the external network address of the firewall) and am using
> the firewall's nat to translate that to the local raq address. As I
> said, it all seemed to work yesterday.
>
> Using www.dnsreport.com, I get a fail on the nameserver
> mail.nomecity.org which I had defined under the MX record dialog as per
> the Cobalt manual.
>
> So can someone help me clean this up? I don't understand what exactly I
> should use for a dns server. Are there some basic commands I could use
> to test things? I'm not entirely sure some basic connectivity is set up
> right, as if I type lynx www.yahoo.com or something I can't get
> anything. The webserver seems to work ok.
>
> --
> Jim D
>
>
> _____________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>

Follow-Ups:
- Re: [cobalt-users] Newbie DNS ? for own network
  - From: Jim Dory
- Re: [cobalt-users] Newbie DNS ? for own network
  - From: Jim Dory

References:
- [cobalt-users] Newbie DNS ? for own network
  - From: Jim Dory

Prev by Date: RE: [cobalt-users] Newbie DNS ? for own network
Next by Date: Re: [cobalt-users] Over Quota Problem
Previous by thread: RE: [cobalt-users] Newbie DNS ? for own network
Next by thread: Re: [cobalt-users] Newbie DNS ? for own network

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index