we just got up two bind dns servers, turned out to not be all that complicated, uses very little resources for our size network. Ill get shot for saying it, but I used webmin, made it really simple, just make sure you ACL the webmin port to your managment IPs and ACL your recursion to your customer IPs. We did the ACLs on a mikrotik thats external to the server. We had considered what you asked, but as part of the routing infrastructure it didnt seem appropriate, leave the routers to route. Even dropping one in as a dedicated box didnt seem appropriate as it is not its defined purpose. And when SHTF for whatever, and we would have needed to reach out, getting help on BIND issues would be a whole lot more likely than getting fast and efficient help on a wrong purposed router.
On Wed, Oct 26, 2016 at 9:58 AM, Dennis Burgess <dmburg...@linktechs.net> wrote: > Yep, its not perfect, sooner you can get on your own DNS servers the > better. Should be a standard practice for ISPs. > > > > We have done many of them for clients, its simple and easy to do, there > are plenty of not super expensive options out there, some are free other > than the server. > > > > *Dennis Burgess** –** Network Solution Engineer – Consultant * > > MikroTik Certified Trainer/Consultant > <http://www.linktechs.net/productcart/pc/viewcontent.asp?idpage=5> – > MTCNA, MTCRE, MTCWE, MTCTCE, MTCINE > > > > For Wireless Hardware/Routers visit www.linktechs.net > > Radio Frequiency Coverages: www.towercoverage.com > > Office: 314-735-0270 > > E-Mail: dmburg...@linktechs.net > > > > *From:* Af [mailto:af-boun...@afmug.com] *On Behalf Of *Josh Luthman > *Sent:* Wednesday, October 26, 2016 9:50 AM > *To:* af@afmug.com > *Subject:* Re: [AFMUG] Mikrotik DNS Cache > > > > I had issues with just myself... > > Josh Luthman > Office: 937-552-2340 > Direct: 937-552-2343 > 1100 Wayne St > Suite 1337 > Troy, OH 45373 > > > > On Oct 26, 2016 10:45 AM, "Dennis Burgess" <dmburg...@linktechs.net> > wrote: > > Does it work, yes it is the same as a high performance DNS server, no. Is > a dedicated DNS resolvers expensive, no. Getting starting say under > 100-150 users, ok, for a while, once you go over that, really need to move > to dedicated resolvers. > > > Dennis Burgess – Network Solution Engineer – Consultant > MikroTik Certified Trainer/Consultant – MTCNA, MTCRE, MTCWE, MTCTCE, MTCINE > > For Wireless Hardware/Routers visit www.linktechs.net > Radio Frequiency Coverages: www.towercoverage.com > Office: 314-735-0270 > E-Mail: dmburg...@linktechs.net > > -----Original Message----- > From: Af [mailto:af-boun...@afmug.com] On Behalf Of Matt > Sent: Wednesday, October 26, 2016 8:54 AM > To: af@afmug.com > Subject: [AFMUG] Mikrotik DNS Cache > > Is anyone using the Mikrotik DNS cache as there primary DNS resolver for > there clients? Say use a CCR and your largest upstreams DNS server as > parent. Should there be any issues with that? > > -- If you only see yourself as part of the team but you don't see your team as part of yourself you have already failed as part of the team.
