3.1.1 DNS with internal/external zone

Similar Messages

• Strange behaviour of OS X Server DNS with IPv6 reverse zones

  I am running a full IPv4 / IPv6 dual stack setup across several machiens including a server (OS X 10.9.1 / OS X Server 3.0.2). I also have IPv6 Internet access via TunnelBroker and have a /64 prefix assigned to me. All my systems have valid and correct IPv6 addresses (not temporary ones) from the range denoted by that prefix.
  I have setup IPv4 and IPv6 addresses for all my systems in OS X Server DNS and that works fine. However, when I add an IPv6 address for a system, the DNS server (or maybe the server GUI) insists on creating a reverse zone for the /127 version of the address. This means I pretty much have a separate reverse zone for every system, which seems crazy to me. it is especially annoying as I have another DNS server where all my zones are defined as slave zoes (for availability reasons) and thsi makes the process of addign a new IPv6 host somewhat tedious. I tried pre-creating a properly named reverse zone for the /64 prefix but the DNS server would not use that and still persists in creating these strange zones.
  Here is a (fictitous example)...
  My /64 prefix is 2001:fd0:f19:2ab::/64
  I have a system with an address of 2001:fd0:f19:2ab:7e6d:62ff:fe8a:a84c
  I add this to OS X Server DNS and it created the reverse DNS zone:
  4.8.a.a.8.e.f.f.f.2.6.d.6.e.7.b.a.2.0.9.1.f.0.0.d.f.0.1.0.0.2.ip6.arpa
  whereas I would expect it to instead add it to the zone
  b.a.2.0.9.1.f.0.0.d.f.0.1.0.0.2.ip6.arpa
  if that zone already exists.
  Has anyone else noticed this? Or do you have it working as one might expect?

  Chris..
  I, too, have the same problem.  I take issue with much of the OS X "Server" after it has been so completely dummed down that it is virtually useless for anyone that would actually like to utilize it as an actual, as the name implies, "SERVER."  I won't get into all of the details of everything that drives me crazy with Apple's decisions here but, suffice it to say, I am EXTREMELY DISAPPOINTED with Apple more than ever.  They should, at a minimum, offer a full-fledged server like they used to have, for an additional price, for people that need more than a nice looking interface and a worthless box.
  That being said, the DNS server, like the rest of the OS X Mavericks Server, is dummed down to the point of allowing very little customization.  Short of using the command line, which I have decided to do (I scrapped the OS X server all together, and just set up BIND, openLDAP, DHCP, Quagga, etc. from the CLI just like I do with all of my Linux servers), there is not much you can do to get the correct prefixes to show up in IPv6 reverse zones.  The reason is that when you enter the forward record, the interface does not give an option to enter the prefix.  So, it seems that for EACH AND EVERY v6 entry (AAAA record) you have (or at least every 10 entries), you will get a separate reverse zone.
  To be completely honest, I don't even know why they included IPv6 zones in this implementation because it is totally out of compliance with the RFCs and, obviously, will not provide proper and correct reverse lookups.  How could it? As you pointed out above, with a /64 prefix, you're getting a 31 digit long reverse zone (which, btw, is a /124)...***???  I've never heard of such a thing.  There should be 16 digits in a /64, 12 in a /48, 8 in /32 and so on.
  I don't think it is anything to do with your using a tunnel broker -- all of our systems are native IPv6 and all reverse queries to the Mac Server fail. 
  I can tell you how to use the CLI to manually enter the zones with the serveradmin tool, if you like, but my advice is to just move to a full fledged BIND implementation .... and, if you want some type of interface other than the console, use something like Webmin which has a GREAT DNS zone interface...and it also keeps up with the RFC compliance.
  Just message me back if you'd like the shell commands.  I hate to say this, it literally pains me, but I administer a ton of servers (physical and virtualized)... roughly 1000 +- to be exact...and WINDOWS Server has a DNS server that is so much further ahead and ADVANCED than Mac, it is disgusting.  In fact, we are running 12 Win Server 2012R2 Active Directory Domain Servers, each running synchronized DNS records and even with over 250,000 DNS records, it works like a champ.  Still, our primary and fail-safe DNS servers are all BIND v9.  Like I said, it is awful to say that about Mac, but dude, they need to wake up and either get back to the real-deal systems or just get out of the advanced product arena all together.  (one exception...my new MacPRO is AWESOME and the most advanced piece of computing equipment money can buy for the price...so kudos there)
  Sorry about the rant, but when i read your post, I was reminded how frustrated I am at all of this nonsense.
  Take care...and good luck.

• Help needed with internal/external speaker problem

  I have a problem that I am trying to find a solution for and I'm hoping you can help. I'm helping a friend with a home theatre setup and I'm a little bit stuck. He has a 20" iMac and I plan on hooking it up to a soundcast wireless music streamer. My problem is, if I plug the soundcast into the headphone port I will lose the internal speaker sound, which is what he uses since he doesn't have external speakers. My question is, how can I get sound output through both the internal iMac speakers and through the headphone port at the same time. I have searched and don't believe the iMac can support this by default so I was wondering if there is any software out there that can do this. Any help would be appreciated. Thanks!

  I too have wondered about this in the past. I have an Imac Intel 24" w/ a USB speaker system in place. Following the above instructions did not solve the issue of having the Imacs internal speaker playing while my usb system is on-possibly I have misunderstood? Going into the the utilities>>>Midi did not help; in fact, in the area for Midi, there was only two default devices listed already; I tried adding another device but nothing pertinent showed up or worked.
  Suggestions.

• Cisco ISE Guest Portal - DNS Issue - External Zone

  Hello,
  I have a customer that has the following sceanrio :
  In a wireless deployment and a Cisco ISE 1.1.3 deployment with CWA, when the wireless guest receives the redictect  URL  from ISE (URL to access the ISE Guest Portal), this URL is based on  the  ISE DNS name, not on its IP address; so, the PC can't resolve  this via DNS name since there is no DNS in the External zone (for guets) or by using the ISP DNS servers addresses provided  by the  DHCP server, and, so, it can't access the Guest Portal at all ;
  I know that in trying to manually code the IP address - this does not work (ie in the CWA Authorization profile, the equivalent URL redirect via the CISCO av-pair as follows :
  cisco-av-pair=url-redirect=https://10.10.10.10:8443/guestportal/gateway?sessionId=sessionIdValue&action=cwa, )
  since the sessionIdValue variable is not replaced by its real value when sent to the wireless client)
  My question is : Has this issue been addressed in version Cisco ISE 1.2 - has anyone tried it if has been addressed? If not in Cisco 1.2 - does anyone know iof this feature will become available?
  Thank-you in advance for your replies.
  Robert C.

  Robert,
  Manual assignment has been made available in ISE 1.2 release.
  M.

• DNS Forwarding Same Internal and External Zone

  Hi,<o:p></o:p>
  So we have decided that we want our internal domain to be the same as our external domain e.g. domain.uk. I understand that split DNS can be used
  to fulfil this requirement but is it possible to set up a forward so if the DNS entry is not available in the internal zone it will forward onto one of our external name servers where it can resolve?<o:p></o:p>
  We are basically trying to avoid having to add the entry on both external and internal DNS servers for it to resolve. So far I have added the external name servers to
  the forwarders and disabled root hints which didn’t work. I’ve tried to add a conditional forwarder but it says the zone already exists. It seems the only to achieve the internal resolution is by creating the DNS entry both internally and externally.<o:p></o:p>
  Does anyone know if this is the case? It seems strange that you couldn’t point the DNS to another external name server for resolution? <o:p></o:p>
  Any help would be appreciated.<o:p></o:p>

  You must ask in networking forum
  https://social.technet.microsoft.com/Forums/en-US/home?forum=winserverNIS&filter=alltypes&sort=lastpostdesc

• Exchange 2013 DNS for internal and external domain

  Hi All,
  I have been assigned a task to implement Microsoft Exchange Server 2013. I need some help in setting up DNS namespaces and design a strategy to have same internal and external names. Let me share some details here.
  We have an Active Directory domain myinternaldomain.net, and we have a public domain
  mypublicdomain.com and we have setup email policy to have
  mypublicdomain.com as the SMTP domain for all the users. We have created another DNS zone in Active directory integrated DNS and created a records for
  mail.mypublicdomain.com and autodiscover.mypublicdomain.com which will point to CAS NLB IP. We have 2 CAS servers and 2 MBX servers, we have configured DAG for MBX High availability and planning to implement WNLB for CAS as
  hardware LB is out of scope due to budget constrains.
  We want to have same URLs for OWA, Autodiscover, ECP and other services from internal network as well as from public network. Users should not be bothered to remember two URLs, using one from internal and other from public networks. I also want to confirm
  that with this setup in place do i need to have myinternaldomain.net and server names in SAN certificate?
  Thanks

  Hi Sccmnb,
  You can easily achieve this using split DNS.
  Internal DNS hostname "mail.mypublicdomain.com" will be pointing to your internal CAS NLB IP and the external public DNS hostname"mail.mypublicdomain.com" will be pointing to the Network device or
  Reverse proxy server IP.
  Depending upon users access location(internal\external) the IPs would vary and they should be able to access the website with same name.
  The names that you would require on the certificate(Use EAC or powershell to raise the request) for client connectivity would be
  SN= mail.mypublicdomain.com
  SAN= autodiscover.mypublicdomain.com
  You don't need to have the active directory domain name present in the certificate.
  Additional  to this you need to update the AutodiscoverURI for all servers and OWA,ECP,Autodiscover Virtual Directories InternalURL and ExternalURL fields with appropiate public names.
  Some additional Info:
  *Internal vs. External Namespaces
  Since the release of Exchange 2007, the recommendation is to deploy a split-brain DNS infrastructure for the Internet-based client namespaces. A split-brain DNS infrastructure enables different IP addresses to be returned for a given namespace
  based on where the client resides – if the client is within the internal network, the IP address of the internal load balancer is returned; if the client is external, the IP address of the external gateway/firewall is returned.
  This approach simplifies the end-user experience – users only have to know a single namespace (e.g., mail.contoso.com) to access their data, regardless of where they are connecting. A split-brain DNS infrastructure, also simplifies the configuration of Client
  Access server virtual directories, as the InternalURL and ExternalURL values within the environment can be the same value.
  *Managing Certificates in Exchange Server 2013 (Part 2)
  *Nice step by step article
  Designing a simple namespace for Exchange 2013
  Regards,
  Satyajit
  Please“Vote As Helpful”
  if you find my contribution useful or “MarkAs Answer” if it does answer your question. That will encourage me - and others - to take time out to help you.

• Set up web with an external dns server

  hi i have bought a mac server. and i am new to configure them, I have hosted dns with a company called speednames and I have plans to host several domains there. but I would like to put them to point to the server because I want to install joomla on the domains. on one of the domains, I still want to have the mail to run on speednames. the rest of the domains mail part i would like to point to the server. do somebody have a guide to do that

  Your DNS MX (mail exchange) record goes to Speednames, and your DNS translation(s) go to your own static IP address(es), and your static IP names are (at your external firewall) NAT'd and port-forwarded to your server.
  The DNS MX entry is the identity of the host where your in-bound mail for the domain is sent, and the other DNS translations are where (all) other queries go.
  Here are some details of [external (outside the firewall) DNS|http://labs.hoffmanlabs.com/node/1594] and [internal (inside your firewall) DNS set-up|http://labs.hoffmanlabs.com/node/1436].

• Discover Plus works with internal IP, Gives error with External IP

  Oracle 9i Discoverer plus works with internal IP but when I try to access using the external IP it gives error while trying to load workbook wizard.
  Error : Unable to Connect to Discoverer Application contact Administrator

  Hi Sree
  Well a virtual host will certainly help working with a firewall its may mode of operation is to allow a different IP and / or DNS URL to work.
  Are you sure the virtual host you added is the correct one as per what you want to do? I ask because you may have one in there for a different reason.
  As I mentioned earlier though, whilst I am happy to contribute and try to help I am by no means an expert in doing what you are trying to do. I've always thought that changing a name like this would involve a re-install of the server which is something I believe you are trying to avoid. Personally I don't recall seeing a situation like yours work without re-installing which is why I encouraged you to speak with Support.
  Best wishes
  Michael

• How can I disable the internal display on my MacBook Pro with connected external display?

  I used this metod with the MagSafe power cable connected (see http://osxdaily.com/2012/06/15/yet-another-way-to-turn-off-internal-lcd-display- of-macbook-pro-with-lid-open/).
  Open System Preferences and click “Mission Control”, then click on “Hot Corners”
  Select a hot corner and pull down the menu to select “Put Display to Sleep”
  Now connect the external display to the Mac and move the cursor to the newly created sleep corner to turn off the internal display
  Close the MacBook lid and wait a few seconds before opening the lid again, the internal display should stay off while the external display will be powered on
  This worked great under Mac OS X 10.7.4, but after the last update to 10.7.5 it doesn’t work more. The built-in display turns off really, but a few seconds after opening the lid it lights up again. Do you have any suggestions? Dimming the brightness or clamshell mode is not very useful.
  MacBook Pro 13-inch,
  2,7 GHz Intel Core i7,
  Mac OS X Lion 10.7.5 (11G56)
  Thanks!

  I have the same problem: not able to work with my external display mirroring the internal one - while shutting the internal display off.
  I believe there is an issue with Mac OS X Lion 7.5 that Apple needs to solve, since apparently it does not happen with this version of the OS only...
  https://discussions.apple.com/thread/4315808?start=45&tstart=0
  Or any other way to solve it?
  Mac Book Air, 13-inch Mid 2011
  Mac OS X Lion 10.7.5 11G63
  Thank you!

• How many DNS record need to create in Internal & external DNS server for exchange?

  Hi friends,
  I recently installed Exchange Server 2010 in my organization for testing purpose and I've register a pubic ip too for exchange server on godaddy.com. How many
  internal & External DNS records reqired to configure on external & Internal dns server so my all feature like Auto-discover, Activ -sync,& webmail start working perfectly.
  It's my first time configuring exchange for a organization.
  Thanks & Regards,
  Pradeep Chaugule

  Hi,
  Just as what ManU Philip said, you need to create
  Autodiscovery.domaincom and mail.domain.com for external dns server.
  Generally, you configure your Exchange Servers as DNS clients of your internal DNS server.
  Refer from:
  http://technet.microsoft.com/en-us/library/aa996996(v=exchg.65).aspx
  Best Regards.

• Routing issue with dual Ethernet NICs - Internal/External Configuration under Windows 8.1 - what am I doing wrong ?

  I have a PC hosting Windows 8.1, attached to two Networks. One leads to the internet - and uses the private IP address (172.*)  the other is purely internal (also using the private address 198.*) but,  has no internet connectivity.  I'm finding
  that if I don't disable my internal NIC, I can't access any internet sites. Is this a bug, or have I not done something correctly.
  I have also, a Windows 7 PC, attached to the same Networks, and it exhibits no issues when connecting to either the internet or to internal locations.
  (Both are Enterprise builds, though only across a Windows for Workgroups network).
  Can anyone tell me what I need to be doing with Windows 8.1 please, to make both internal & external network connectivity work as is the case with Windows 7 ?
  I'm only running IPv4, and both Wired Networks have at their respective ends, Routers that support DHCP & NAT. Though the internal Router's external port is not connected to anything.
  Thanks in advance...

  Hi,
  Can you tell me what you have tried so far and how did you set?
  Firstly please update all network adapter driver.
  After that, do the following:
  1. Open the Command Prompt (Admin).
  2. Run "Ipconfig /all" to check your nics IP information.
  3. Use route command tell the computer which interface you want the packets to leave from.
  Assuming Network A is...
  10.10.11.0 /24
  Router is 10.10.10.1
  and Network B is...
  10.10.12.0 /24
  Router is 10.10.10.2
  then use this command:
  route add 10.10.11.0 mask 255.255.255.0 10.10.10.1 -p
  route add 10.10.12.0 mask 255.255.255.0 10.10.10.2 -p
  Hope this helps.
  Karen Hu
  TechNet Community Support

• Conversion of External material with Internal using search help

  Hi,
  We are working on ECC 6.0 for automotive company and have following scenario.
  One OE (External/Customer) material number (MARA-BISMT) with more than one internal material number (MARA-MATNR). This has been done because same customer material is sold by delar for different brands, for exmaple BMW, Ford, Opel. Therefore we have different internal materials with respective brands with same external number in material master. 
  Business requirement is, all correspondence with customer or vendor should be done using external/customer material number.
  Whereas all internal business process should use internal SAP material number.
  For example as given below
  External No. --> Internal No.
  BMW-1 --> 1001 (Brand - BMW)
  BMW-1 --> 1002 (Brand - Ford)
  BMW-1 --> 1003 (Brand - Opel)
  Now the requirement is that user will create document, for example PO or SO, with external/customer material number. While
  doing that user should get a pop up screen after entering external material number, if external material is attached/corresponds to multilple internal material number. Then user will selects correct internal number from pop up screen and return to document screen but material field should displayed with external material number.
  For example in above case, user will enter BMW-1. Pup up screen will have three internal numbers 1001, 1002 and 1003. User selects 1003 but after material conversion material field of the document will displayed as BMW-1.
  We are using Customer enhancement - "MGA00003 Material Master (Industry and Retail): Number Display" for input/ouput conversion.
  Also we have created Elementary Search Help - SEARCH_OE_NUMBER with Hot Key "Q". This search help is included into
  collective search help "MAT1_A" so that user can able to see multiple internal material number by entring customer material number.
  We are able to convert external material number with internal material number and put the external material while creating PO. But when we add another item in PO, search help is getting called again and again for first line item even after conversion of matrial has been taken place.
  How we can avoid this multiple calling of serach help?
  Is there any better way to achieve this requirement?
  Please help us.
  Thanks,

  We have resolved this issue by redesigning material master data.

• How to swap internal storage with the external sto...

  Is it possible to swap internal storage with the external storage on Nokia X without any damage to phone as well as external sd card? It has been a very popular issue in recent times. If someone has a really good solution then please reply keeping the criteria provided beforehand in mind. Thanks in advance.
  Sent from my Nokia Lumia 530...

  >
  I have a table which is partitioned by Year. Now I want to move the 1 (EX: 1999) year data to another history table.
  For this first I want to swap the 1999FY partition out with an external table and then swap them back to HISTORY table.
  Please help me by providing a sample script for that.
  >
  It seems to me that you use the term "external table" in a wrong context. External table means a flat file, accessed as db object with select.
  But probably, for you "external table" is a normal table that may hold the same structured data as a partition of another table does.
  We have a feature for your requirement called "exchange partition with table".
  http://download.oracle.com/docs/cd/B19306_01/server.102/b14200/statements_3001.htm#i2131250
  Kind regards
  Uwe
  http://uhesse.wordpress.com

• TS1258 Is there a way to re-set the monitor with an external keyboard, since my internal keyboard is not working?

  My internal keyboard and mouse have stopped working, so I have attached an external keyboard and mouse. But now I need to re-set the monitor. Can I do it with an external keyboard?
  I have the dark bands at the bottom of the internal display.

  You cant switch off the power to the monitor but you can send it to sleep.
  1 - Apple > System preferences > energy saver: set the monitor to sleep at the shortest duration
  2 - While the second display is connected and powered on,  System Preferences > Displays > Arrangement:  deselect the Mirror Displays option
  While the presentation plays on the secondary display, the Mac display will go to sleep as there is nothing on the screen during play, entering display sleep within seconds.

• I replaced my 2010-2011 iMac internal HD i dont have an install disk i created one with my external HD but when i go to install lion onto my imac it stays at the apple logo screen.HELP ME PLEASE!

  I replaced my 2010-2011 iMac internal HD i dont have an install disk i created one with my external HD but when i go to install lion onto my imac it stays at the apple logo screen.HELP ME PLEASE!

  Boot from the original Install disc that came with the computer and then format the drive Mac OS Extended (Journaled) using the GUID partition. Then  you can re-install OS X. If you no longer have the original media call AppleCare with the serial number of the machine (look on the bottom of the stand) and for a nominal fee they will ship you replacement media.
  The chances are very good you will have fan problems if you used an off-the-shelf HD, beginning in 2009 Apple began using HD's from vendors that incorporated heat sensors into the HD. If you did not buy the same type of HD your computer will think the HD is overheating causing the fans to run at full speed.