Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place! |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
|
09-27-2005, 01:03 AM
|
#1
|
Member
Registered: Apr 2003
Location: Kolkata
Posts: 215
Rep:
|
secondary dns
Hello there, i need the configuration of secondary dns in redhat linux exterprise 3 and dont know how to configure the secondary dns in linux. i have installed the primary dns in one of machone and is working fine. Please tell me how to configure the slave dns.
I have the following files in primary dns
1. data.xzone 2. data.revxzone in my /var/directory.
What files are needed to run the secondary dns
i am waiting for your response.
bye
|
|
|
09-27-2005, 02:00 AM
|
#2
|
LQ Guru
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211
Rep: 
|
You configure this from network device control.
Main menue > system tools > network device control
click "configure"
highlight the interface (i.e. eth0)
select the "DNS" tab
This is a pretty standard red-hat-ism, should work for you.
|
|
|
09-27-2005, 02:11 AM
|
#3
|
Member
Registered: Apr 2003
Location: Kolkata
Posts: 215
Original Poster
Rep:
|
Hi
i want to configure my machine as a secondary name server. Please help me how to configure
bye
|
|
|
09-27-2005, 03:06 AM
|
#4
|
LQ Guru
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
|
You only need to edit the /etc/named.conf in your secondary dns, since the zone files are created automatically from the master. You must put an entry in your /etc/named.conf for every zone you want, like this:
Code:
zone "domain.com" {
type slave;
file "data.slave-xzone2";
masters {xx.xx.xx.xx;};
};
where xx.xx.xx.xx is the IP of your primary dns.
|
|
|
09-27-2005, 03:58 AM
|
#5
|
LQ Guru
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211
Rep: 
|
This is a bit different to what I'm used to. In FC4, the DNS servers are in /etc/resolv.conf
FC4 comes with a caching nameserver configuration already - I can add zones and so on to the caching server.
I can make it the primary nameserver by making sure the first line in /etc/resolve.conf is "nameserver 127.0.0.1" and I can make it a secondary server by making sure the second line reads that way.
Or have I got all this sideways somehow?
|
|
|
09-27-2005, 05:16 AM
|
#6
|
Member
Registered: Apr 2003
Location: Kolkata
Posts: 215
Original Poster
Rep:
|
thanks for the reply . can u please let me know what will be in the file
file "data.slave-xzone2"
and where should this file be kept and what else is needed .
or do i start named after doing thsi
sanjibgupta
|
|
|
09-27-2005, 05:45 AM
|
#7
|
LQ Guru
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
|
The file will be created automatically when you start your (secondary) dns. It will be kept in the directory you define with the line:
Code:
directory "/path/to/zone-files";
in the "options" section of your /etc/named.conf and will be also changed when you do a change in your primary dns.
Mind that the user under which named is running must have write access to that directory.
Regards
Last edited by bathory; 09-27-2005 at 05:59 AM.
|
|
|
09-27-2005, 08:31 AM
|
#8
|
LQ Guru
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, CoreOS, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 7,831
|
Simon - /etc/resolv.conf just specifies which DNS hosts to use for name resolution. It doesn't actually configure the host itself as a DNS server. If the host is a DNS server the first server specified in /etc/resolv.conf should be 127.0.0.1 (localhost).
|
|
|
09-27-2005, 09:23 PM
|
#9
|
Member
Registered: Jun 2005
Location: Odenton, MD
Distribution: Gentoo
Posts: 290
Rep:
|
Also, while it's not mandatory, but since you seem a little unsure about DNS and the such. . .
You might want to add an "allow-transfer" line on your masters soas to only allow your slaves to transfer the zone info from your masters, not just anyone.
And also put "notify yes;" in the zones, too. That way the master pushes out a notify to the slave to update its DNS records.
|
|
|
09-28-2005, 12:14 AM
|
#10
|
LQ Guru
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211
Rep: 
|
Quote:
Originally posted by jlightner
Simon - /etc/resolv.conf just specifies which DNS hosts to use for name resolution. It doesn't actually configure the host itself as a DNS server. If the host is a DNS server the first server specified in /etc/resolv.conf should be 127.0.0.1 (localhost).
|
That's my understanding also - and theFC2,3,4 DNS package group has the configuration files all set up by default. Starting the DNS service is all that is required. Doesn't RHEL3 have the same thing?
|
|
|
09-28-2005, 12:47 AM
|
#11
|
Member
Registered: Apr 2003
Location: Kolkata
Posts: 215
Original Poster
Rep:
|
hi
I have tried writin it for my slave dns
but the file data.slave-xzone2 was not written . I saw the follwinf lines many time in my /var/log message file
Sep 27 16:02:56 cb named[4924]: dumping master file: tmp-XXXXWMljpV: open: permission denied
Sep 27 16:02:56 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: failed while receiving responses: permission denied
Sep 27 16:02:56 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: end of transfer
Sep 27 16:28:03 cb named[4924]: dumping master file: tmp-XXXX9dhuNz: open: permission denied
Sep 27 16:28:03 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: failed while receiving responses: permission denied
Sep 27 16:28:03 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: end of transfer
Sep 27 17:25:41 cb named[4924]: dumping master file: tmp-XXXXnkVc0T: open: permission denied
Sep 27 17:25:41 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: failed while receiving responses: permission denied
Sep 27 17:25:41 cb named[4924]: transfer of 'boseinst.ernet.in/IN' from 202.141.148.22#53: end of transfer
Please help me 2 sort the problem
sanjibgupta
|
|
|
09-28-2005, 02:59 AM
|
#12
|
LQ Guru
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
|
As I told you you must be sure that the directory where bind is going to write the zone files, is owned by the user/group under which named is running. So if that user/group is "named" run:
Code:
chown -R named:named /path/to/zone-files
|
|
|
09-28-2005, 03:05 AM
|
#13
|
Member
Registered: Apr 2003
Location: Kolkata
Posts: 215
Original Poster
Rep:
|
i am running it from the root directory. Do i need to give any permission in primary dns?
i have addes only one line there in named.conf of primar dns
allow-transfer {xxx.xxx.xxx.xx;};
any thing else to be done
202.141.148.22 is my primary dns and the message the gave above is from the log file of secondary dns
thanks
Last edited by sanjibgupta; 09-28-2005 at 06:07 AM.
|
|
|
09-29-2005, 09:43 AM
|
#14
|
LQ Guru
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, CoreOS, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 7,831
|
Simon - You can ACCESS existing dns servers by adding them to /etc/resolv.conf. This is what you would do on most new servers because they wouldn't all be dns servers.
However to CONFIGURE actual dns servers it is a little more complicated. Basically one has to edit /etc/named.conf, possibly /etc/rndckey.conf and /var/named zone files.
In many organizations the dns servers are maintained separately than the other Linux/Unix servers so admins don't really get involved with them. I've been doing Unix/Linux since 1991 as a full time thing and only at my current job have I been responsible for actual dns servers. A lot of time the Network or Security organizations will own them instead depending on the size of the company. Even here the dns setup I maintain is the one that faces the internet. Internally there are separate dns servers maintained by our Windows admins.
It just happend that I had to setup a new DNS server recently because we're getting ready to change our carrier (ISP).
|
|
|
10-04-2005, 12:53 AM
|
#15
|
Member
Registered: Apr 2003
Location: Kolkata
Posts: 215
Original Poster
Rep:
|
Hi
My primay DNS shows this types of line when the tarnsfer starts for secondary DNS. Is there any problem
zone '148.141.202.IN-ADDR.ARPA' allows updates by IP address, which is insecure
SAnjib Gupta
|
|
|
All times are GMT -5. The time now is 11:16 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|