I haven't done a dual authoritative implementation with pdns, and don't know off hand if this can be done with a single server or not. The PDNS list would be helpful with recommendations of how best to implement this.

For a caching nameserver, pdns is trivial. Simply install the pdns-recursor package, and check your /etc/resolv.conf file. That's all there is to it (IIRC).

For a single authoritative server, it's easy enough. I use the MySQL backend. This allows for MySQL replication to a secondary server, which is sweet (and recommended for an external authoritative server).

Sounds to me like you simply need an additional DNS server to handle authoritative requests internally. That's not too difficult. Poweradmin is a nice web app that allows for maintaining dns records via your web browser. Sweet. To me, this makes the little extra effort setting things up well worth it.

--
-Eric 'shubes'

On 09/12/2011 09:28 AM, Carlos Herrera Polo wrote:
Thanks Eric, PowerDNS is easy ?

2011/9/12 Eric Shubert <[email protected] <mailto:[email protected]>>

    djbdns configuration is simpler than named(bind).

    Personally, I use (and recommend) PowerDNS.

    --
    -Eric 'shubes'


    On 09/12/2011 09:18 AM, Carlos Herrera Polo wrote:

        Thanks ....
        can you tell me, which of these programs will be more easy to
        use for
        this situation ?.. djbns or named ?


        2011/9/11 Pak Ogah <[email protected]
        <mailto:[email protected]>
        <mailto:[email protected] <mailto:[email protected]>>>


            there are many software work together and closely on
        qmailtoaster to
            ensure mail delivered.
            not just chkuser and qmail use DNS to resolve but
        SpamAssassin and
            spamdyke (if you installed) also use DNS to resolve and check to
            make sure IP is not blacklisted.
            so that's why I am suggesting make a DNS zone on internal
        dns server
            is the easiest solution.


            On 09/09/11 19:37, Carlos Herrera Polo wrote:

                Thanks Pak...
                I can't understand where disable in tcp.smtp file the
        "chkuser"
                module..... In the links not explain this.

                Install internal DNS is the solution ? I belive that
        chkuser maybe
                read smtproutes file... But qmailtoaster not work


                2011/9/8, Pak Ogah<[email protected]
        <mailto:[email protected]>
        <mailto:[email protected]
        <mailto:[email protected]>>>:


                    Hi Carlos,
                    information about tcp.smtp can be read @
        http://wiki.qmailtoaster.com/index.php/Tcp.smtp
                    and I assume because the server is internal perhaps
        you can
                    use this
                    tcp.smtp

                    192.168.3.233 <http://192.168.3.233>:

                    allow,RELAYCLIENT="",RBLSMTPD="",NOP0FCHECK="1"


                    or you can read the archive here which may related:
                    - SPF + local whitelist?
        
http://www.mail-archive.com/[email protected]/msg03841.html
                    - 511 sorry, can't find a valid MX for sender domain
        (#5.1.1
                    - chkuser)
                    554 5.0.0 Service unavailable
        
http://www.mail-archive.com/[email protected]/msg28420.html

                    but in my case for all internal servers that will be
        sending
                    email, I
                    will adding an A record for the domain zone on
        internal DNS
                    server.
                    yes I have 2 DNS server, 1 with public IP
        (authorative dns
                    for my domain
                    using public ip) and 1 with internal IP (authorative
        using
                    internal ip
                    and caching dns)
                    the mailserver is using internal IP and NAT by firewall
                    but you can setup 1 dns server that have 2 view
        (google it)

                    so in your case, I'll create a new domain zone on
        internal
                    DNS server /
                    internal view
        
http://wiki.qmailtoaster.com/index.php/QMT-ISO_Manual_Guide#Configure_Bind

                    On 09/08/11 9:23, Carlos Herrera Polo wrote:

                        In tcp.smtp file... Can I disable checkuser for
        one ip ?


                        2011/9/7, Carlos Herrera
                        Polo<[email protected]
        <mailto:[email protected]>
        <mailto:[email protected]
        <mailto:[email protected]>>>:


                            I can do that ?.... in tcp.smtp file ?

                            2011/9/7 Tonix (Antonio
        Nati)<[email protected] <mailto:[email protected]>
        <mailto:[email protected] <mailto:[email protected]>>>


                                   Il 07/09/2011 23:19, Tonix (Antonio
        Nati) ha
                                scritto:

                                Il 07/09/2011 23:07, Carlos Herrera Polo
        ha scritto:

                                I have a problem with "chkuser" when
        send email,
                                please help

                                   tcp.smtp file :

                                192.168.3.233 <http://192.168.3.233>:


          allow,RELAYCLIENT="",RBLSMTPD="",NOP0FCHECK="1",SENDER_NOCHECK="1"


                                   The log :

                                   09-07 15:50:58 CHKUSER rejected rcpt:
                                from<[email protected]:t
        [email protected] <mailto:[email protected]> <mailto:[email protected]
        <mailto:[email protected]>>:>

                                remote<s02-sis:unknown:192.168.3.233>
        rcpt<
        [email protected] <mailto:[email protected]>
        <mailto:[email protected] <mailto:[email protected]>>>   :
                                invalid rcpt MX domain

        micorreo.com <http://micorreo.com> <http://micorreo.com> is not
        a real

                                domain...but in my smtproutes file I have:

                                   micorreo.com:10.10.10.100:25

                                   Can qmailtoaster "disable" CHKUSER
        rcpt when
                                the domain is in
                                smtproute
                                ??



                                I suppose this domain to be internal,
        and used
                                only from internal users.
                                So you should disable chkuser for
        internal users.


                                So you should disable chkuser's checking for
                                rcpt mx when accepting from
                                internal users.
                                In such case (internal smtp server) I
        suggest to
                                disable chkuser at all.

                                Regards,

                                Tonino



                                Regards,

                                Tonino



                                --

          ------------------------------------------------------------
                                          Inter@zioni
          Interazioni di
                                Antonio Nati
        http://www.interazioni.it [email protected]
        <mailto:[email protected]>
        <mailto:[email protected] <mailto:[email protected]>>


          ------------------------------------------------------------



                                --

          ------------------------------------------------------------
                                          Inter@zioni
          Interazioni di
                                Antonio Nati
        http://www.interazioni.it [email protected]
        <mailto:[email protected]>
        <mailto:[email protected] <mailto:[email protected]>>


          ------------------------------------------------------------




          
---------------------------------------------------------------------------------
                    Qmailtoaster is sponsored by Vickers Consulting Group
                    (www.vickersconsulting.com
        <http://www.vickersconsulting.com>
        <http://www.vickersconsulting.com>)

                         Vickers Consulting Group offers Qmailtoaster
        support
                    and installations.
                           If you need professional help with your setup,
                    contact them today!

          
---------------------------------------------------------------------------------
                          Please visit qmailtoaster.com
        <http://qmailtoaster.com>
        <http://qmailtoaster.com> for the latest news, updates, and

                    packages.

                           To unsubscribe, e-mail:
        [email protected]
        <mailto:[email protected]>
        <mailto:[email protected]
        <mailto:[email protected]>>

                          For additional commands, e-mail:
        [email protected]
        <mailto:[email protected]>
        <mailto:[email protected]
        <mailto:[email protected]>>







          
---------------------------------------------------------------------------------
            Qmailtoaster is sponsored by Vickers Consulting Group
            (www.vickersconsulting.com
        <http://www.vickersconsulting.com>
        <http://www.vickersconsulting.com>)

               Vickers Consulting Group offers Qmailtoaster support and
            installations.
                 If you need professional help with your setup, contact
        them today!

          
---------------------------------------------------------------------------------
                Please visit qmailtoaster.com <http://qmailtoaster.com>
        <http://qmailtoaster.com> for the

            latest news, updates, and packages.
                     To unsubscribe, e-mail:
        [email protected]
        <mailto:[email protected]>
        <mailto:[email protected]
        <mailto:[email protected]>>

                For additional commands, e-mail:
        [email protected]
        <mailto:[email protected]>
        <mailto:[email protected]
        <mailto:[email protected]>>






    
---------------------------------------------------------------------------------
    Qmailtoaster is sponsored by Vickers Consulting Group
    (www.vickersconsulting.com <http://www.vickersconsulting.com>)
       Vickers Consulting Group offers Qmailtoaster support and
    installations.
         If you need professional help with your setup, contact them today!
    
---------------------------------------------------------------------------------
        Please visit qmailtoaster.com <http://qmailtoaster.com> for the
    latest news, updates, and packages.
             To unsubscribe, e-mail:
    [email protected]
    <mailto:[email protected]>
        For additional commands, e-mail:
    [email protected]
    <mailto:[email protected]>






---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and installations.
     If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
    Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: [email protected]
    For additional commands, e-mail: [email protected]


Reply via email to