Confused about a basic concept

2013-06-05 Thread Bryan Harris
Hi all,I think I may be confused about a very basic DNS concept. Sorry if this has been asked before.1. I have a master and two slaves.2. The master server is the SOA for my zone. The SOA record points to the master server.3. Each of the two slaves are authoritative for my zone.4. There are 2 NS

Re: Confused about a basic concept

2013-06-05 Thread Ben Croswell
Everything you listed is pretty close to accurate. A couple points of clarification. 8) The master needs UDP/TCP 53 open to the slaves. Before a zone transfer can happen the slave needs to get the SOA RR from the master to see if the serial number has changed. This normally happens over UDP

Re: Confused about a basic concept

2013-06-05 Thread Warren Kumari
On Jun 5, 2013, at 9:02 AM, Bryan Harris bryanlhar...@me.com wrote: Hi all, I think I may be confused about a very basic DNS concept. Many people are, but most don't a: know or B: admit it :-P Sorry if this has been asked before. 1. I have a master and two slaves. 2. The master

Re: Confused about a basic concept

2013-06-05 Thread Carlos M. Martinez
The 'hidden master' setup is a very good strategy for a number of reasons. I think the original description only derails a bit when using the term 'authoritative': I'm being told our authoritative DNS servers should not receive any queries, as well as DNS slaves respond to queries.

Re: Confused about a basic concept

2013-06-05 Thread Bryan Harris
Hi everyone,Thanks for all the detailed responses, I think I have a better understanding of things now. I was completely and totally confused about UDP/TCP. I am just going to take a wild guess that doing iptables the way I described would've caused a bunch of problems...After reading everything

Re: Confused about a basic concept

2013-06-05 Thread Tony Finch
Bryan Harris bryanlhar...@me.com wrote: After reading everything it looks to me like our hidden master configuration is basically okay, but by some of the best practices described, it could be better and easier to work with if we had a separate caching layer. Note that the caches live on the

Re: Confused about a basic concept

2013-06-05 Thread btb
On 2013.06.05 10.02, Bryan Harris wrote: Hi all, I think I may be confused about a very basic DNS concept. Sorry if this has been asked before. 1. I have a master and two slaves. 2. The master server is the SOA for my zone. The SOA record points to the master server. 3. Each of the

Re: Confused about a basic concept

2013-06-05 Thread Mark Andrews
In message 05883710-136f-4dc2-8079-e29a68fed...@me.com, Bryan Harris writes: Hi everyone, Thanks for all the detailed responses, I think I have a better understanding of things now. I was completely and totally confused about UDP/TCP. I am just going to take a wild guess that doing