Chuck wrote:
I recommend a highly secured master that is not queried by any clients (preferably in a network/vlan your clients can't even access)... then configure one-way zone transfers to 2 or more slave servers which you configure your clients to point to. Maintain your zone files in rcs of some sort... For IP control/delegation and DNS control/delegation I recommend IP Plan.
Heh, the shadow master setup.
Of course bind is the 800lb gorilla in the DNS world... don't even think about putting DNS on windows.
ROTFL.
Yes, the 800 pound TURTLE. Old and slow.
I don't recommend any front ends being that a few hours well spent reading the docs and man pages will make you a dns expert in no time. Bind is very easy to learn and shouldn't take longer than an afternoon at best.
Too bad no one has made rpms for djbdns, daemontools and tools to manage tinydns data with a sql backend and a nice web frontend.
On Fri, Aug 14, 2009 at 4:17 PM, Hugh E Cruickshank <hugh@forsoft.com mailto:hugh@forsoft.com> wrote:
Hi All: I am looking for some possible recommendations on the handling of our internal DNS services. First some background... Until recently our entire network was located within a single facility with internal DNS services provided by our CentOS 4.7 (using BIND). While I had problems with DHCP/DNS communications it was basically working. At the beginning of the month we moved the production servers (a couple of RHEL5.3 boxes with a Windows 2008 server) to a new facility connected to the old facility via a VPN. We are still running with our DevSys as the DNS server but I would like to make the two locations at least partially independent. I have been doing some research (probably enough to be really dangerous to myself<g>) and it looks like I need to setup a master/slave setup. Here are my questions... 1. Is the BIND master/slave the appropriate approach? 2. Can I have each subnet be a master for itself and a slave for the other subnet? 3. Any pointers to applicable docs/examples? 4. Can you recommend a "front end" for BIND (we have webmin installed but I have yet to start working with it)? Any and all thoughts, suggestions, criticisms gladly accepted. TIA Regards, Hugh -- Hugh E Cruickshank, Forward Software, www.forward-software.com <http://www.forward-software.com> _______________________________________________ CentOS mailing list CentOS@centos.org <mailto:CentOS@centos.org> http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos