Mangled secondary records...
I made a change in all of the master records and wanted to force the slave to update. I deleted all the host files on the secondary and restarted named. It pulls all the domains in and creates new host files, but when you view the host files for each domain, they appear to be garbled. Running the same BIND version on both primary and secondary. Help! Secondary is effectively down as a result... Jeff ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Mangled secondary records...
-Original Message- From: Jeff Justice Date: Saturday, August 18, 2012 12:24 AM To: "bind-users@lists.isc.org" Subject: Mangled secondary records... >I made a change in all of the master records and wanted to force the >slave to update. > >I deleted all the host files on the secondary and restarted named. > >It pulls all the domains in and creates new host files, but when you view >the host files for each domain, they appear to be garbled. > >Running the same BIND version on both primary and secondary. > >Help! Secondary is effectively down as a result... Are you sure you're not just seeing "compiled" zones that are now default in 9.9? http://ftp.isc.org/isc/bind9/cur/9.9/doc/arm/Bv9ARM.ch06.html#zonefile_form at http://www.isc.org/software/bind/new-features/9.9 http://newsgroups.derkeiler.com/Archive/Comp/comp.protocols.dns.bind/2012-0 6/msg00094.html If you really want the old behavior, try your exercise again after adding "masterfile-format text;" to your options clause. This is a FAQ. :-) ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Mangled secondary records...
Hmmmokay. It makes me wonder why my primary isn't doing this as well though. They have been running the same version. Jeff On Aug 18, 2012, at 2:53 AM, Michael Hoskins (michoski) wrote: > -Original Message- > > From: Jeff Justice > Date: Saturday, August 18, 2012 12:24 AM > To: "bind-users@lists.isc.org" > Subject: Mangled secondary records... > >> I made a change in all of the master records and wanted to force the >> slave to update. >> >> I deleted all the host files on the secondary and restarted named. >> >> It pulls all the domains in and creates new host files, but when you view >> the host files for each domain, they appear to be garbled. >> >> Running the same BIND version on both primary and secondary. >> >> Help! Secondary is effectively down as a result... > > Are you sure you're not just seeing "compiled" zones that are now default > in 9.9? > > http://ftp.isc.org/isc/bind9/cur/9.9/doc/arm/Bv9ARM.ch06.html#zonefile_form > at > > http://www.isc.org/software/bind/new-features/9.9 > > http://newsgroups.derkeiler.com/Archive/Comp/comp.protocols.dns.bind/2012-0 > 6/msg00094.html > > If you really want the old behavior, try your exercise again after adding > "masterfile-format text;" to your options clause. > > This is a FAQ. :-) > > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Mangled secondary records...
Nevermind. I get it now. Thanks for pointing me in the right direction. Jeff On Aug 18, 2012, at 3:21 AM, Jeff Justice wrote: > Hmmmokay. It makes me wonder why my primary isn't doing this as well > though. They have been running the same version. > > Jeff > > > On Aug 18, 2012, at 2:53 AM, Michael Hoskins (michoski) > wrote: > >> -Original Message- >> >> From: Jeff Justice >> Date: Saturday, August 18, 2012 12:24 AM >> To: "bind-users@lists.isc.org" >> Subject: Mangled secondary records... >> >>> I made a change in all of the master records and wanted to force the >>> slave to update. >>> >>> I deleted all the host files on the secondary and restarted named. >>> >>> It pulls all the domains in and creates new host files, but when you view >>> the host files for each domain, they appear to be garbled. >>> >>> Running the same BIND version on both primary and secondary. >>> >>> Help! Secondary is effectively down as a result... >> >> Are you sure you're not just seeing "compiled" zones that are now default >> in 9.9? >> >> http://ftp.isc.org/isc/bind9/cur/9.9/doc/arm/Bv9ARM.ch06.html#zonefile_form >> at >> >> http://www.isc.org/software/bind/new-features/9.9 >> >> http://newsgroups.derkeiler.com/Archive/Comp/comp.protocols.dns.bind/2012-0 >> 6/msg00094.html >> >> If you really want the old behavior, try your exercise again after adding >> "masterfile-format text;" to your options clause. >> >> This is a FAQ. :-) >> >> > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
2 dns records for same server
I need to have 2 seperate dns records for the same servername. Essentially when inside my network (10.) I need it to resolve to a 10. ip address. When outside it needs to resolve to my public ip. Everything Ive done so far with my dns records has returned 2 ip's. In otherwords when doing a host servername or nslookup servername I get both the external and internal ip's of the server. This seems to be causing issues with the applicatons on the server. Some computers inside my network are trying to connect to the public ip (which is being natted from my firewall), those that are connecting are extremely slow. The slowness leads me to believe that they are first trying the public ip before hitting the private. My dns is setup with a dns server inside my network (serving the 10) and 2 dns servers for my public ip's.My lan is setup that each of my sites (schools) are in a different dns zone. What I want to happen is the url or name of the server to be the same regardless of where the user is either inside or outside my network. So far I have tried setting up a seperate zone file for my internal dns and adding the entry to my external like I normally do. This is what resolves with 2 ip's. Is there anyway to get my dns servers to do this? thanks, ddh -- Dwayne Hottinger Network Administrator Harrisonburg City Public Schools ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: 2 dns records for same server
Assuming your architecture is: 2 DNS servers which answers to external queries (public facing) 1 DNS server which only answers to internal queries (internal facing) All internal clients configured to query the internal facing DNS server for resolution. Then, simply place your domain in both the external and internal servers but having the internal one resolve with a zone file which maps to internal IPs instead of the external IPs. On the other hand, if you don't want to maintain the domain in both places, then your best bet is to configure your clients to use a searchlist of the form: internal. Then, you only have the internal. zone on your internal facing server and it only houses names which should override the normal domain's entries. Your clients in this case would not use a fully qualified domain name. Instead they would just use the hostname. --John On Sat, 18 Aug 2012 08:49:58 -0400 Dwayne Hottinger wrote: > I need to have 2 seperate dns records for the same servername. > Essentially when inside my network (10.) I need it to resolve to a > 10. ip address. When outside it needs to resolve to my public ip. > Everything Ive done so far with my dns records has returned 2 ip's. > In otherwords when doing a host servername or nslookup servername I > get both the external and internal ip's of the server. This seems to > be causing issues with the applicatons on the server. Some computers > inside my network are trying to connect to the public ip (which is > being natted from my firewall), those that are connecting are > extremely slow. The slowness leads me to believe that they are first > trying the public ip before hitting the private. > > My dns is setup with a dns server inside my network (serving the 10) > and 2 dns servers for my public ip's.My lan is setup that each of > my sites (schools) are in a different dns zone. What I want to > happen is the url or name of the server to be the same regardless of > where the user is either inside or outside my network. > > So far I have tried setting up a seperate zone file for my internal > dns and adding the entry to my external like I normally do. This is > what resolves with 2 ip's. Is there anyway to get my dns servers to > do this? > > thanks, > > ddh > > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: 2 dns records for same server
Hello, you are looking for views. But be aware if your DNS clients are moving from private to public network and vice versa - you'd better have short TTL's. Hope this helps, Tomas. Dňa 18.8.2012 14:49 Dwayne Hottinger wrote / napísal(a): I need to have 2 seperate dns records for the same servername. Essentially when inside my network (10.) I need it to resolve to a 10. ip address. When outside it needs to resolve to my public ip. Everything Ive done so far with my dns records has returned 2 ip's. In otherwords when doing a host servername or nslookup servername I get both the external and internal ip's of the server. This seems to be causing issues with the applicatons on the server. Some computers inside my network are trying to connect to the public ip (which is being natted from my firewall), those that are connecting are extremely slow. The slowness leads me to believe that they are first trying the public ip before hitting the private. My dns is setup with a dns server inside my network (serving the 10) and 2 dns servers for my public ip's.My lan is setup that each of my sites (schools) are in a different dns zone. What I want to happen is the url or name of the server to be the same regardless of where the user is either inside or outside my network. So far I have tried setting up a seperate zone file for my internal dns and adding the entry to my external like I normally do. This is what resolves with 2 ip's. Is there anyway to get my dns servers to do this? thanks, ddh -- Dwayne Hottinger Network Administrator Harrisonburg City Public Schools ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: 2 dns records for same server
I have solved the same issue with views, one internal and one external in my case. I have the same names both internal and external and different IPs. Views may become too complex in your case. ymmv On 18/08/2012, at 14:49, Dwayne Hottinger wrote: > I need to have 2 seperate dns records for the same servername. Essentially > when inside my network (10.) I need it to resolve to a 10. ip address. When > outside it needs to resolve to my public ip. Everything Ive done so far > with my dns records has returned 2 ip's. In otherwords when doing a host > servername or nslookup servername I get both the external and internal ip's > of the server. This seems to be causing issues with the applicatons on the > server. Some computers inside my network are trying to connect to the public > ip (which is being natted from my firewall), those that are connecting are > extremely slow. The slowness leads me to believe that they are first trying > the public ip before hitting the private. > > My dns is setup with a dns server inside my network (serving the 10) and 2 > dns servers for my public ip's.My lan is setup that each of my sites > (schools) are in a different dns zone. What I want to happen is the url or > name of the server to be the same regardless of where the user is either > inside or outside my network. > > So far I have tried setting up a seperate zone file for my internal dns and > adding the entry to my external like I normally do. This is what resolves > with 2 ip's. Is there anyway to get my dns servers to do this? > > thanks, > > ddh > > > -- > Dwayne Hottinger > Network Administrator > Harrisonburg City Public Schools > > ___ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- Best regards Sten Carlsen No improvements come from shouting: "MALE BOVINE MANURE!!!" ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Version statement...
On Aug 17, 2012, at 22.02, Michael Hoskins (michoski) wrote: > -Original Message- > > From: Jeff Justice > Date: Friday, August 17, 2012 6:10 PM > To: "bind-users@lists.isc.org" > Subject: Re: Version statement... > >> Okay, here's what I know: >> >> named-checkconf says there are no errors. >> There is only one named process running. >> When I apply my edited named.conf, the log shows named stopping and >> restarting with no errors. >> >> How can I check to see the path where my named process thinks named.conf >> is located? > > I think configuration and OS tools are your best bet... strings -a /path/to/named | grep -iF 'named.conf' and/or named -V, looking for --sysconfdir= -ben ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: 2 dns records for same server
-Original Message-
From: Dwayne Hottinger
Date: Saturday, August 18, 2012 5:49 AM
To: "bind-users@lists.isc.org"
Subject: 2 dns records for same server
>I need to have 2 seperate dns records for the same servername.
>Essentially when inside my network (10.) I need it to resolve to a 10.
>ip address. When outside it needs to resolve to my public ip.
>Everything Ive done so far with my dns records has returned
> 2 ip's. In otherwords when doing a host servername or nslookup
>servername I get both the external and internal ip's of the server. This
>seems to be causing issues with the applicatons on the server. Some
>computers inside my network are trying to connect
> to the public ip (which is being natted from my firewall), those that
>are connecting are extremely slow. The slowness leads me to believe that
>they are first trying the public ip before hitting the private.
>
>
>My dns is setup with a dns server inside my network (serving the 10) and
>2 dns servers for my public ip's.My lan is setup that each of my
>sites (schools) are in a different dns zone. What I want to happen is
>the url or name of the server to be the
> same regardless of where the user is either inside or outside my
>network.
>
>
>So far I have tried setting up a seperate zone file for my internal dns
>and adding the entry to my external like I normally do. This is what
>resolves with 2 ip's. Is there anyway to get my dns servers to do this?
>
As others have mentioned, you need views. You're on the right track with
two zone files, but need a bit more configuration. Ultimately you'll want
to read over the ARM for more detail on views and other available options
before running a name server (especially one that's publicly exposed), but
here are the key points:
options {
directory "/etc/namedb";
listen-on {
a.b.c.d; # external IP
e.f.g.h; # internal IP
};
empty-zones-enable yes;
};
# acls, etc. now shown here
include "common.conf";
view "external" in {
match-destinations { a.b.c.d; };
notify-source a.b.c.d;
transfer-source a.b.c.d;
query-source a.b.c.d;
allow-transfer { transfer; };
allow-query { trusted; }; # or any
recursion yes; # or no
allow-recursion { trusted; }; # or none
zone "." in { type hint; file "named.root"; };
include "external_master.conf";
include "external_slave.conf";
};
view "internal" in {
match-destinations { e.f.g.h; };
transfer-source e.f.g.h;
query-source e.f.g.h;
allow-transfer { transfer; };
allow-query { trusted; };
recursion yes;
allow-recursion { trusted; };
zone "." in { type hint; file "named.root"; };
include "internal_master.conf";
include "internal_slave.conf";
};
Then in your included *.conf files make sure your external and internal
zones point to different zone files like
/etc/namedb/internal/{master,slave}/* and
/etc/namedb/external/{master,slave}/*.
http://ftp.isc.org/isc/bind9/cur/9.9/doc/arm/Bv9ARM.ch06.html#view_statemen
t_grammar
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Version statement...
How are you testing it? Where do you see the wrong version? ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
