[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] RE: DNS Zone Transfers permitted and Secondary DNS
- Subject: Re: [cobalt-users] RE: DNS Zone Transfers permitted and Secondary DNS
- From: "E.B. Dreger" <eddy+public+spam@xxxxxxxxxxxxxxxxx>
- Date: Wed Mar 5 09:52:00 2003
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
j> Date: Wed, 5 Mar 2003 18:34:50 +0100
j> From: jeanjean
j> This is long time ago that i'm looking to automate my
j> secondary DNS. At the moment, i have to log into the 2 DNS
j> servers (yes i have 2 physical DNS servers) and in the first
j> one i make the needed DNS entrys, and in the second i put a
j> 'Secondary Name Service for Domain'
Correct.
j> But, i think that it can be more automated, so that we will
j> only have to make the primary DNS entrys, and the second will
j> 'copy' the needed infos from the primary. Or is this a dream
j> ???
As of yet, one must use rsync/rcp/whatever to distribute the
necessary files.
We're developing a DNS server platform that does things a bit
differently... receive a NOTIFY, perform several authentication
checks, and add the zone automatically. In the mean time, we
(like many others) simply use rsync and some script-fu to copy
zones around.
Perhaps someone will add something similar to BIND. I originally
was going to modify that in the interest of time, but its source
code scared me off.
j> I read alot about that, and i found someone telling that this
j> is all the needed things on the secondary DNS :
j> >Master/Slave DNS:
j> >Make site ns1.yourdomain.com with ip 1.2.3.4
j> >Make site ns2.yourdomain.com sith ip 1.2.3.5
j> >Make DNS entires for yourdomain.com
j> >include 'A' records for ns1 and ns2.
j> >Telnet (SSH) into the server and modify /etc/named.conf
j> >In the options section, add entries like so:
j> >options {
j> >directory "/etc/named";
j> >listen-on { 1.2.3.4; 1.2.3.5; };
j> >version "Name Server";
j> >};
j> >Issue the command < ndc reload >.
j> >To see version use "dig @serverip version.bind. CHAOS TXT"
j> >You now have ns1 and ns2 as nameservers.
Insufficient.
j> This worked 1 time. Yes, the secondary DNS created all the
j> records from the primary ! YES! COOL!
It appeared to work. In reality, you created a lame server that
was returning cached responses.
j> But, i at the next record in the primary server, i noticed 24
j> hours later that the secondary don't copy the primary's new
j> records !?
Yup. Lame server.
j> I try to insert a 'allowed transfer zone' but nothing helps....
j> Is there anybody here in the list who can help, and bring a
j> 'tutorial' or a 'how-to' to make that the secondary will copy
j> the primary DNS ?
In general: Try reading BIND ARM, BOG, or the "grasshopper" book.
For your RaQ, you configure secondary DNS service for the domain
in question on the server in question.
j> I hope that this time somebody will answer. This is not my
j> first attempt... I'm really sory for my bad english, i'm from
j> europe, and i try my best ;) Thanks for any help, comment or
j> suggestion.
Your English is better than many native speakers on this side of
the pond.
Eddy
--
Brotsman & Dreger, Inc. - EverQuick Internet Division
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 (785) 865-5885 Lawrence and [inter]national
Phone: +1 (316) 794-8922 Wichita
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@xxxxxxxxx>
To: blacklist@xxxxxxxxx
Subject: Please ignore this portion of my mail signature.
These last few lines are a trap for address-harvesting spambots.
Do NOT send mail to <blacklist@xxxxxxxxx>, or you are likely to
be blocked.