On 8/14/12 1:33 PM, Howard White wrote:
Here I go again, trying to Bogart a presentation before it even starts.
I am now managing (cringe and shudder) DNS for my employer. At least
this one is done in a manner to which I am accustomed.
My new challenge is thus - we have an intranet configured with the Top
Level Domain (TLD) of .local and parallel intranet with the TLD of .vpn.
We have an internet zone configured with the TLD of .com. We use a
variety of services hosted by Comcast, most specifically smtp and imap.
None of our DNS config files have an MX record within but there is an
smtp IN CNAME record in the .com zone.
We have servers upon which we need to configure a "null client" postfix
daemon. Null client is a system that may only send mail; a server that
needs to send error messages and such to admins (that would be me). Said
server is defined in the .local zone. The null client examples I have
found so far by searching only describe a homogeneous .com network. I
see the need for the .local server to relay to the Comcast smtp to be
able to get the mail delivered.
But how???
Comcast will most likely reject the mail, unless you're configured to
send the mail as your comcast user. I usually ignore Comcast, and use a
gmail account to send mail via postfix.
Kudos on the internal TLD domain - most (confused) companies will use
their Internet domain as their internal namespace, and that causes
problems (and they're usually horribly maintained, if at all). I do the
same thing wherever I work - in that way, local hostnames resolve, and
external hostnames resolve, and they're treated separately.
Another fun thing to do internally is to turn on the dynamic DNS wtih
your DHCP server. During the client DHCP registration process, the
client's hostname is put into the DNS for your local TLD. I'm happy to
share my named.conf and dhcpd.conf if anyone is interested.
(I seem to recall there was some issue with the OSX .local domain, and
the way they're doing some kinda discovery. OSX calls it .local.)
--
Drew from Zhrodague
lolcat divinator
[email protected]
--
You received this message because you are subscribed to the Google Groups
"NLUG" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/nlug-talk?hl=en
