Alan, Typically you would want to manage your external DNS at a DNS provider.
For instance, a-1networks.com DNS is probably hosted somewhere (godaddy, network solutions, etc). The real goal here is to make it easy for users to roam outside the network and inside the network. Thus when you setup your SIP domain you usually want to think about what you have available for DNS in the outside world. So, from a client perspective, internally the client would need the following records: _sip._udp.sipdomain SRV 10 10 5060 fqdn.of.server _sip._tcp.sipdomain SRV 10 10 5060 fqdn.of.server _xmpp-client._tcp.sipdomain SRV 10 10 5222 fqdn.of.server _xmpp-server._tcp.sipdomain SRV 10 10 5269 fqdn.or.server _xmpp-client._tcp.conference.sipdomain SRV 10 10 5222 fqdn.of.server _xmpp-server._tcp.conference.sipdomain SRV 10 10 5222 fqdn.or.server (yes 5222!) fqdn.of.server A ip.address.of.server (this is the only record that different inside vs. outside). You really don't want to open up port 53 for external DNS query... you really just want split DNS. This means that there are two different DNS servers that are authoritative for 'sipdomain'. One internally that returns internal IP's and one externally that returns external IP's. Hope that make sense. Mike On Wed, Oct 24, 2012 at 4:05 PM, George Niculae <[email protected]> wrote: > On Wed, Oct 24, 2012 at 11:00 PM, Alan Worstell > <[email protected]> wrote: > > Hello, > > We have a 4.6 server set up, and wanted to have a split view DNS system > > so it hands the public IP address out to public queries and the internal > > address to anything on the local LAN. I've configured the DNS service to > > be unmanaged in the GUI, added a firewall script in > > /usr/share/sipxecs/cfinputs/plugin.d/ to allow UDP port 53 through, and > > queries work internally and externally. > > However, periodically, /etc/named.conf keeps getting overwritten with a > > generic conf. > > Is there any way to prevent this from being overwritten? > > > > Hi, > > checking unmanaged DNS should be the only setting to prevent this, > could you provide sipxagent.log after such rewrite to see what > happens? > > George > _______________________________________________ > sipx-users mailing list > [email protected] > List Archive: http://list.sipfoundry.org/archive/sipx-users/ > -- Michael Picher, Director of Technical Services eZuce, Inc. 300 Brickstone Square**** Suite 201**** Andover, MA. 01810 O.978-296-1005 X2015 M.207-956-0262 @mpicher <http://twitter.com/mpicher> linkedin <http://www.linkedin.com/profile/view?id=35504760&trk=tab_pro> www.ezuce.com ------------------------------------------------------------------------------------------------------------ There are 10 kinds of people in the world, those who understand binary and those who don't.
_______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
