= DNS Configuration = The domain, cs.southern.edu, is split into externally visible and internally visible. == Internal Configuration == The internal configuration is a Microsoft Dynamic DNS that works nicely with our Microsoft ADDS setup. This contains all records related to cs.southern.edu. However, all external services are 1-1 NAT mapped to internal addresses and this means that the internal servers map only to internal IPs. If there is an exception to this rule, it should be corrected not allowed to continue. A NS lookup on the internal servers gives the following: {{{#!highlight bash cs.southern.edu nameserver = dc1.cs.southern.edu cs.southern.edu nameserver = dc2.cs.southern.edu cs.southern.edu nameserver = dcvm.cs.southern.edu dc1.cs.southern.edu internet address = 10.10.129.2 dc2.cs.southern.edu internet address = 10.10.129.3 dcvm.cs.southern.edu internet address = 10.10.4.16 }}} == External Configuration == The external nameserver IPs map to a single server with three IPs. The server is a virtual machine and is running as dns.cs.southern.edu on 10.10.119.[6,10,11]. Services are 1-1 NAT mapped from 216.249.119.[6,10,11] to 216.249.119.[6,10,11] respectively. The server names csdc01.cs.southern.edu and csdc02.cs.southern.edu are legacy names for the internal DNS servers when we had not difference between external and internal address ranges (i.e. they were all external addresses). A NS lookup on the external server gives the following: {{{#!highlight bash cs.southern.edu nameserver = csdc01.cs.southern.edu cs.southern.edu nameserver = csdc02.cs.southern.edu cs.southern.edu nameserver = dns.cs.southern.edu dns.cs.southern.edu internet address = 216.249.119.6 csdc01.cs.southern.edu internet address = 216.249.119.10 csdc02.cs.southern.edu internet address = 216.249.119.11 }}} === Setup === Now running on containers in proxmox: {{{#!highlight bash apt-get install bind9 bind9-utils bind9-dnsutils bind9-doc bind9-host -y }}} Copy over the files and then {{{#!highlight bash systemctl start named systemctl enable named systemctl status named }}} Check config and zones with {{{#!highlight bash named-checkconf named-checkzone cs.southern.edu [path to zone file] }}}