2 Mail/Web Servers

Sern · 05-16-2005, 07:35 AM

Ok what i am tring to do is set up a backup apache and email server so if the first one goes down the second one picks up , but i am not 100% sure if i have the zone file set up correctly for this. My internal domain is dunnpc.com and the external domain is dunn-pc.com also heres a dump of my zone file dunn-pc.com.db (BTW im using Fedora Core 3)

Code:

$TTL    86400
@       IN SOA  dunn-pc.com. azabielski.dunn-pc.com. (
                                        2003040701      ;serial
                                        28800           ; refresh
                                        14400           ; retry
                                        3600000         ; expiry
                                        86400 )         ; minimum
; Name Servers
                IN NS           ns1.dunn-pc.com
                IN NS           ns2.dunn-pc.com
; Mail Servers
                IN MX 10        whbmail.dunnpc.com
                IN MX 20        whb-linuxbackup.dunnpc.com
; Public Servers
ns1     IN      A       192.168.20.8
ns2     IN      A       192.168.20.9
www     IN      A       192.168.20.8
www     IN      A       192.168.20.9

scowles · 05-17-2005, 05:29 AM

Can you list the output of:

1) dig dunn-pc.com soa
2) dig dunn-pc.com ns
3) dig ns1.dunn-pc.com a
4) dig -x 192.168.20.8

Also, you mentioned that dunn-pc.com is your external domain, but yet you are assigning rfc1918 addresses to be returned in the answer. Internally this makes since, but not if you plan on on having this server queried from the internet.

Sern · 05-17-2005, 08:27 AM

haha yea i figured this out , im a moron. Anyway my problem now is getting the servers on 2 diffrent IP's lol

Darin · 05-17-2005, 09:31 AM

if you are behind a NAT and using private IP space then how many public IPs do you have? If you only have one public IP then the only way I can think of to serve from two different machines behind it is if your router supports some sort of load balancing or failover. I don't belive any of the home/SOHO routers (dsl modem, cable modem, etc) support this.

I also noted that your zonefile has multiple A records for the same machine. When setting up a DNS zone I've learned to use a single A record for each server and then CNAMEs for the other DNS names that point to that system. I'm not sure of the exact source that started me doing this, but it seems like good practice to have one address per server and then point all the other DNS names to those record. Something like this:

Code:

@      SOA  adomain.com.   webmaster.adomain.com. (
                                        2005051701 ;serial
                                        8h                 ; refresh
                                        4h                 ; retry
                                        15d               ; expiry
                                        224h )          ; minimum
; Name Servers
      NS           ns1.adomain.com.
      NS           ns2.adomain.com.
; Mail Servers
      MX 10        mail1.adomain.com.
      MX 20        mail2.adomain.com.
; Public Servers
bart           A       192.168.20.8
maggie      A       192.168.20.9

;Canonical names
www1    CNAME bart.adomain.com.
www2    CNAME maggie
ns1         CNAME bart
ns2         CNAME maggie
mail1      CNAME bart
mail2      CNAME maggie

Also note that the NS and MX records do not define a host record per se, they are pointers and need to resolve to one of the DNS records. This is why in my example I have an MX record for mail1 and then a CNAME to define what mail1 is. Another note, you left the trailing periods off some of the records in your first post. When you do not end a record with the dot, it basically tacks on the zone name at the end, so just plain ns.adomain.com actually means ns.adomain.com.adomain.com.

Sern · 05-17-2005, 10:29 AM

Awesome thank you so much. We have a block of ips , the problem is we only had 1 released to us at this location. We have a cisco router , that does support load balanceing and failover. How could use these to run it off the same IP??

ALSO i am having another problem filtering users from computers when attaching winbind and samba with active directory and setting up sendmail with active directory any help you can offer would be great

Thanks again