Me, again....

Allright...

This is a DNS/BIND question.

I have a linux server running BIND, which is authorative for domain.com. I want to create a child domain, child.domain.com, and I want a different box (particularly windows 2003 server) to be authorative for that child domain. The location of the linux DNS server (but not the windows server) is sent via DHCP... Long story...

It may be a simple fix, but I don't know to do it. I'm completely lost. Any ideas?

Here's my named.conf:

=======================================

#controls {
# inet 127.0.0.1 allow { any; } keys { "key"; };
#};


options {
pid-file "/var/run/named/named.pid";
directory "/var/named";

};

//
// a caching only nameserver config
//
zone "." {
type hint;
file "named.ca";
};

zone "0.0.127.in-addr.arpa" {
type master;
file "localhost.zone";
};

zone "0.0.10.in-addr.arpa" {
type master;
file "0.0.10.in-addr.arpa.zone";
};

zone "domain.com" {
type master;
file "domain.com.zone";
};

zone "office.domain.com" {
type master;
file "office.domain.com.zone";
};

=======================================
And here is domain.com.zone:

$TTL 86400
@ IN SOA web1.domain.com. webmaster.domain.com (
3
28800
7200
604800
86400 )


@ IN NS 10.0.0.15
domain.com IN MX 10 mail.domain.com

@ IN A 10.0.0.15
ftp IN A 10.0.0.5
jacee IN A 10.0.0.15
mail IN A 10.0.0.5
www IN A 10.0.0.15
office IN A 10.0.0.11

======================================
$TTL 86400
@ IN SOA fs1.office.domain.com. webmaster.domain.com (
3
28800
7200
604800
86400 )


@ IN NS 10.0.0.11
office.domain.com IN MX 10 fs1.office.domain.com

fs1 IN A 10.0.0.11

Can one have a an authortative primary DNS server on a machine with a floating IP?

If nobody knows how to get to that machine because its IP is floating
(assigned by DHCP) then how can anybody get to its authoritative
records in order to resolve the names of hosts in its sub-domain?

If that is possible, I am open all ears as to how the solution is implemented.

As to implementing domain and sub-domains consult the O'Reilly book
"DNS & Bind".

I don't have the book, can't justify the cost, and don't have the time. No ideas huh?

So they do not have public lending libraries in the great state of Utah?

So why waste other people's time?

Quite frankly, I'm in a very rural area ... accessing that material is difficult, to say the least.

If you don't want to help, fine... but if you aren't willing to help, why did you respond to this thread? That's what this forum is all about...helping each other. No one is making you respond to anything.

No one is forced to respond, so no, it's not a waste of time. Second, it is a waste of time for me to drive 4 hours to a public library to access these types of books.

There is a difference between asking questions and asking other people to
do the donkey work and debug your configuration files for you.

Have you actually installed these configuration files above and tested them? What results did you get and why did you not include them with your posting?

Since you have difficulties obtaining printed documentation :

1) Have you read /usr/share/doc/HOWTO/DNS-HOWTO ?

2) Have you looked at the resources available at
http://www.dns.net/dnsrd/

Now in case I misunderstand the situation, you write --

Does this mean that the linux machine does not have a fixed IP address
but is assigned an IP address within a range of addresses from a DHCP server?

If this is indeed the case and in fact it has a floating IP address, then
unless I am very seriously in error, I do not believe that you can have
a DNS nameserver on a non fixed IP address in a simple manner as you wish.

If the IP address of the DNS server is not fixed, then other machines
do not know the IP address to go to in order to get their queries resolved.

As an example, say the only place that you could look up a telephone number was in the directory at the public library. If you know the street
address of the library you can go there and look up the information.

If they decided to change the library to a mobile library in a truck,
and it went from town to town throughout Utah, you would not be able
to go and look up the telephone number because you did not know
the street address of where the mobile library was that day.

The only way you could do it, would be to consult some other reference
to find out the location, street address of the mobile library for that day.

So unless you intend to register your floating IP address machine with another reference authority, http://www.dyndns.org/, then your implementation of having a DNS server on a machine assigned its IP number from a range of possible values by DHCP will not work.

My apologies if this was not clear enough in the original posting.

Yes, there is a difference. I consider this site to be a last resort. If I can find references on the web that give me an instant answer, I don't have to wait for forum replys, right? It would be more convenient for me to find the answer myself, if I could. So to answer your question, I have done alot of searching. I just don't know BIND that well.

I have checked every reference I can think of. Much of it is over my head. I searched the web for some good online how-to's and guides, but they're too far over my head too.

No, the linux server has a fixed ip address. It IS the DHCP server for our lan, and is telling it's DHCP clients that it is the "one and only" DNS server. Clients look to it for DNS queries.

I wanted the clients to query the linux server (the DNS server) and if the query was for the client domain, the linux would query the 2003 DNS server (or the clients would be instructed to query the 2003 server -- however it works). I just want the 2003 server to handle queries for its own child domain, but I want it to integrate with the existing linux DNS server. I figured I was just missing some simple documentation.

My problem is that I look at alot of the documentation on the local system (the How-to's) and they are overwhelming. It has taken many posts to this site and others to get me where I am. I have learned alot, but where I am located, I **am** the BIND expert, which is alot to say....gives you an idea how limited the "linux techies" are in the area.

I have tried different things, and no matter what I do, the 2003 box isn't being queried. I forget what I did, but at one time, the linux dns wouldn't respond to any queries. I had to revert back to my original dns config (remove some "modifications" to the zone file) to get it to work again.

To make a long story short, is making our windows 2003 server authorative for it's child domain via the "main" linux DNS server (to whom all clients talk to) easy, or is it a pain in the neck? Because if it is complicated, I'd rather just forget it, although I'd like to learn what I'm missing here.

Thanks for the help.

Hi,


i'm starting to make a similar configuration of a linux box running bind as primary DNS and a fresh installed 2003 server std edition.

My goal is to use only the bind as dns on the linux box without dynamic updates.


The 2003 box was set up without it's dns and it's looking at the linux box
I'm wondering if you find a solution for your problem and if somebody can help me understanding
how to configure the bind to allow the Dynamic updates considering that th clients will be m$ XP ?

In the m$ "Checklist: Verifying DNS before installing Active Directory" I can read that

reading http://www.nominum.com/getOpenSourceResource.php?id=6
i've added to the named.conf the following

zone "_msdcs.example.com" {
type master;
file "_msdcs.example.db";
check-names ignore;
allow-update { localnets; };
};

and in the _msdcs.example.db i've added all what i've found in the Netlogon.dns

I didn't set up a dns on the 2003 server. Should I?

the problem anyway ist that the client are still very slow in connecting to the domain.



for what concern your original problem i've found something here

http://www.linux-mag.com/2001-03/bind_06.html


thank you
ciao