LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 09-27-2005, 01:03 AM   #1
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Rep: Reputation: 30
secondary dns


Hello there, i need the configuration of secondary dns in redhat linux exterprise 3 and dont know how to configure the secondary dns in linux. i have installed the primary dns in one of machone and is working fine. Please tell me how to configure the slave dns.
I have the following files in primary dns
1. data.xzone 2. data.revxzone in my /var/directory.
What files are needed to run the secondary dns
i am waiting for your response.

bye
 
Old 09-27-2005, 02:00 AM   #2
Simon Bridge
LQ Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 198Reputation: 198
You configure this from network device control.

Main menue > system tools > network device control

click "configure"
highlight the interface (i.e. eth0)
select the "DNS" tab

This is a pretty standard red-hat-ism, should work for you.
 
Old 09-27-2005, 02:11 AM   #3
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Original Poster
Rep: Reputation: 30
Hi
i want to configure my machine as a secondary name server. Please help me how to configure
bye
 
Old 09-27-2005, 03:06 AM   #4
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
Blog Entries: 1

Rep: Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074
You only need to edit the /etc/named.conf in your secondary dns, since the zone files are created automatically from the master. You must put an entry in your /etc/named.conf for every zone you want, like this:
Code:
zone "domain.com" {
        type slave;
        file "data.slave-xzone2";
        masters {xx.xx.xx.xx;};
};
where xx.xx.xx.xx is the IP of your primary dns.
 
Old 09-27-2005, 03:58 AM   #5
Simon Bridge
LQ Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 198Reputation: 198
This is a bit different to what I'm used to. In FC4, the DNS servers are in /etc/resolv.conf

FC4 comes with a caching nameserver configuration already - I can add zones and so on to the caching server.

I can make it the primary nameserver by making sure the first line in /etc/resolve.conf is "nameserver 127.0.0.1" and I can make it a secondary server by making sure the second line reads that way.

Or have I got all this sideways somehow?
 
Old 09-27-2005, 05:16 AM   #6
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Original Poster
Rep: Reputation: 30
thanks for the reply . can u please let me know what will be in the file
file "data.slave-xzone2"

and where should this file be kept and what else is needed .
or do i start named after doing thsi
sanjibgupta
 
Old 09-27-2005, 05:45 AM   #7
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
Blog Entries: 1

Rep: Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074
The file will be created automatically when you start your (secondary) dns. It will be kept in the directory you define with the line:
Code:
directory "/path/to/zone-files";
in the "options" section of your /etc/named.conf and will be also changed when you do a change in your primary dns.
Mind that the user under which named is running must have write access to that directory.

Regards

Last edited by bathory; 09-27-2005 at 05:59 AM.
 
Old 09-27-2005, 08:31 AM   #8
MensaWater
LQ Guru
 
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, CoreOS, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 7,831
Blog Entries: 15

Rep: Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669
Simon - /etc/resolv.conf just specifies which DNS hosts to use for name resolution. It doesn't actually configure the host itself as a DNS server. If the host is a DNS server the first server specified in /etc/resolv.conf should be 127.0.0.1 (localhost).
 
Old 09-27-2005, 09:23 PM   #9
ARC1450
Member
 
Registered: Jun 2005
Location: Odenton, MD
Distribution: Gentoo
Posts: 290

Rep: Reputation: 30
Also, while it's not mandatory, but since you seem a little unsure about DNS and the such. . .

You might want to add an "allow-transfer" line on your masters soas to only allow your slaves to transfer the zone info from your masters, not just anyone.

And also put "notify yes;" in the zones, too. That way the master pushes out a notify to the slave to update its DNS records.
 
Old 09-28-2005, 12:14 AM   #10
Simon Bridge
LQ Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 198Reputation: 198
Quote:
Originally posted by jlightner
Simon - /etc/resolv.conf just specifies which DNS hosts to use for name resolution. It doesn't actually configure the host itself as a DNS server. If the host is a DNS server the first server specified in /etc/resolv.conf should be 127.0.0.1 (localhost).
That's my understanding also - and theFC2,3,4 DNS package group has the configuration files all set up by default. Starting the DNS service is all that is required. Doesn't RHEL3 have the same thing?
 
Old 09-28-2005, 12:47 AM   #11
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Original Poster
Rep: Reputation: 30
hi
I have tried writin it for my slave dns
but the file data.slave-xzone2 was not written . I saw the follwinf lines many time in my /var/log message file

Sep 27 16:02:56 cb named[4924]: dumping master file: tmp-XXXXWMljpV: open: permission denied
Sep 27 16:02:56 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: failed while receiving responses: permission denied
Sep 27 16:02:56 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: end of transfer
Sep 27 16:28:03 cb named[4924]: dumping master file: tmp-XXXX9dhuNz: open: permission denied
Sep 27 16:28:03 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: failed while receiving responses: permission denied
Sep 27 16:28:03 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: end of transfer
Sep 27 17:25:41 cb named[4924]: dumping master file: tmp-XXXXnkVc0T: open: permission denied
Sep 27 17:25:41 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: failed while receiving responses: permission denied
Sep 27 17:25:41 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: end of transfer

Please help me 2 sort the problem
sanjibgupta
 
Old 09-28-2005, 02:59 AM   #12
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
Blog Entries: 1

Rep: Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074
As I told you you must be sure that the directory where bind is going to write the zone files, is owned by the user/group under which named is running. So if that user/group is "named" run:
Code:
chown -R named:named /path/to/zone-files
 
Old 09-28-2005, 03:05 AM   #13
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Original Poster
Rep: Reputation: 30
i am running it from the root directory. Do i need to give any permission in primary dns?
i have addes only one line there in named.conf of primar dns
allow-transfer {xxx.xxx.xxx.xx;};
any thing else to be done
202.141.148.22 is my primary dns and the message the gave above is from the log file of secondary dns
thanks

Last edited by sanjibgupta; 09-28-2005 at 06:07 AM.
 
Old 09-29-2005, 09:43 AM   #14
MensaWater
LQ Guru
 
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, CoreOS, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 7,831
Blog Entries: 15

Rep: Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669
Simon - You can ACCESS existing dns servers by adding them to /etc/resolv.conf. This is what you would do on most new servers because they wouldn't all be dns servers.

However to CONFIGURE actual dns servers it is a little more complicated. Basically one has to edit /etc/named.conf, possibly /etc/rndckey.conf and /var/named zone files.

In many organizations the dns servers are maintained separately than the other Linux/Unix servers so admins don't really get involved with them. I've been doing Unix/Linux since 1991 as a full time thing and only at my current job have I been responsible for actual dns servers. A lot of time the Network or Security organizations will own them instead depending on the size of the company. Even here the dns setup I maintain is the one that faces the internet. Internally there are separate dns servers maintained by our Windows admins.

It just happend that I had to setup a new DNS server recently because we're getting ready to change our carrier (ISP).
 
Old 10-04-2005, 12:53 AM   #15
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Original Poster
Rep: Reputation: 30
Hi
My primay DNS shows this types of line when the tarnsfer starts for secondary DNS. Is there any problem

zone '148.141.202.IN-ADDR.ARPA' allows updates by IP address, which is insecure

SAnjib Gupta
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Secondary DNS Set up loccom Linux - General 2 05-05-2005 04:18 AM
Why a secondary DNS? stwog Linux - Networking 2 01-19-2005 06:29 PM
secondary DNS server freelinuxcpp Linux - Networking 2 07-31-2004 05:31 AM
Secondary DNS Server Terri Linux - Networking 0 01-02-2002 10:27 AM
Setting up secondary DNS freshfall Linux - Networking 4 12-14-2001 01:45 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 11:16 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration