I tried setting up a dns primary and secondary server for my cloudcomputing class, but nothing seems to work. The exact specifications of the servers are:
DNS • Choose a FQDN for your network (doesn’t need to be officially registered) • Implement a primary and a secondary DNS server hosting your domain. The secondary DNS server should mirror the configuration of the primary and should be able to automatically take over if the primary server goes down. • All servers need to be included in the DNS zone file • Reverse lookup should be available for all servers as well • Your DNS servers should forward to external name service to resolve external requests (e.g., Google DNS)
After I set up both of the servers i tried to use the dig command, but it couldn't resolve my own domain names. (dig clcteamvier.com) But it did resolve for example "google.com" correctly.
So i created the server instances using aws and using security groups to ensure only my team could connect to the servers. The security groups are 100% set up correctly i even checked with my teacher. So here are the following files that i created and added to both of the dns servers:
so this is my named.conf:
acl "trusted" {
10.0.0.10; # ns1 - can be set to localhost
10.0.0.11; # ns2
10.0.0.13; # ldap
10.0.0.12; # gitlab - still has to change ip addr. back
};
options {
listen-on port 53 { 127.0.0.1; 10.0.0.10; };
# listen-on-v6 port 53 { ::1; };
allow-transfer { 10.0.0.11; }; # disable zone transfers by default
allow-query { trusted; }; # allows queries from "trusted" clients
};
include "/etc/bind/named.conf.local";
this is my named.conf.local:
zone "clcteamvier.com" {
type master;
file "/etc/named/zones/db.clcteamvier.com";
};
zone "0.0.10.in-addr.arpa" {
type master;
file "/etc/named/zones/db.10.0";
};
this is my /etc/named/zones/db.clcteamvier.com
$TTL 604800
@ IN SOA dnsprim.clcteamvier.com. admin.clcteamvier.com. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
; name servers - NS records
IN NS dnsprim.clcteamvier.com.
IN NS dnssec.clcteamvier.com.
; name servers - A records
dnsprim.clcteamvier.com. IN A 10.0.0.10
dnssec.clcteamvier.com. IN A 10.0.0.11
; 10.0.0.0/23 - A records
ldap.clcteamvier.com. IN A 10.0.0.13
gitlab.clcteamvier.com. IN A 10.0.0.12
this is my /etc/named/zones/db.10.0:
$TTL 604800
@ IN SOA clcteamvier.com. admin.clcteamvier.com. (
3 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
; name servers
IN NS dnsprim.clcteamvier.com.
IN NS dnssec.clcteamvier.com.
; PTR Records
10 IN PTR dnsprim.clcteamvier.com. ; 10.0.0.10
11 IN PTR dnssec.clcteamvier.com. ; 10.0.0.11
13 IN PTR ldap.clcteamvier.com. ; 10.0.0.13
12 IN PTR gitlab.clcteamvier.com. ; 10.0.0.12
i did those commands to check if there are any errors:
sudo named-checkzone clcteamvier.com /etc/named/zones/db.clcteamvier.com
sudo named-checkzone 0.0.10.in-addr.arpa /etc/named/zones/db.10.0
this is my secondary dns:
this is my named.conf:
acl "trusted" {
10.0.0.10; # ns1 - can be set to localhost
10.0.0.11; # ns2
10.0.0.13; # ldap
10.0.0.12; # gitlab
};
options {
listen-on port 53 { 127.0.0.1; 10.0.0.11; };
# listen-on-v6 port 53 { ::1; };
allow-query { trusted; }; # allows queries from "trusted" clients
include "/etc/named/named.conf.local";
this is my named.conf.local
zone "clcteamvier.com" {
type slave;
file "slaves/db.clcteamvier.com";
masters { 10.0.0.10; }; # ns1 private IP
};
zone "0.0.10.in-addr.arpa" {
type slave;
file "slaves/db.10.0";
masters { 10.0.0.10; }; # ns1 private IP
};
