Hi all,I think I may be confused about a very basic DNS concept. Sorry if this has been asked before.1. I have a master and two slaves.2. The master server is the SOA for my zone. The SOA record points to the master server.3. Each of the two slaves are authoritative for my zone.4. There are 2 NS
Everything you listed is pretty close to accurate.
A couple points of clarification.
8) The master needs UDP/TCP 53 open to the slaves. Before a zone transfer
can happen the slave needs to get the SOA RR from the master to see if the
serial number has changed. This normally happens over UDP
On Jun 5, 2013, at 9:02 AM, Bryan Harris bryanlhar...@me.com wrote:
Hi all,
I think I may be confused about a very basic DNS concept.
Many people are, but most don't a: know or B: admit it :-P
Sorry if this has been asked before.
1. I have a master and two slaves.
2. The master
The 'hidden master' setup is a very good strategy for a number of reasons.
I think the original description only derails a bit when using the term
'authoritative':
I'm being told our authoritative DNS
servers should not receive any queries, as well as DNS slaves
respond to queries.
Hi everyone,Thanks for all the detailed responses, I think I have a better understanding of things now. I was completely and totally confused about UDP/TCP. I am just going to take a wild guess that doing iptables the way I described would've caused a bunch of problems...After reading everything
Bryan Harris bryanlhar...@me.com wrote:
After reading everything it looks to me like our hidden master configuration
is basically okay, but by some of the best practices described, it could be
better and easier to work with if we had a separate caching layer.
Note that the caches live on the
On 2013.06.05 10.02, Bryan Harris wrote:
Hi all,
I think I may be confused about a very basic DNS concept. Sorry if this has
been asked before.
1. I have a master and two slaves.
2. The master server is the SOA for my zone. The SOA record points to the
master server.
3. Each of the
In message 05883710-136f-4dc2-8079-e29a68fed...@me.com, Bryan Harris writes:
Hi everyone,
Thanks for all the detailed responses, I think I have a better
understanding of things now. I was completely and totally confused about
UDP/TCP. I am just going to take a wild guess that doing
8 matches
Mail list logo