Child DNS Zone changing PTR record of OD Master

Similar Messages

• DNS server's PTR record wrong?

  I have a server I frequent that has an IP address of 10.1.1.2.  It acts as an OD and AD server, DNS server, IM server and a few other things. 
  As of now, the DNS server only has 1 entry in it, for the DNS server itself.  I got a request to add a second A record for a new accounting server.  Easy enough right?  I added an A record under my primary zone and made sure it was FQDN.  I went to ping it by name and by IP and no luck - no resolution.
  Whats odd is when I look at my records, I have 2 groupings of PTR records.  One is my new one which makes sense : 1.1.10.in-addr.arpa.  The other is the one that the DNS server originally had: 2.1.1.10.in-addr.arpa.
  I'm thinking this is why I can't get my new A record to work. 
  I really REALLY don't want to kill OD or AD here.  I know they lean on DNS to live.  I have to get this fixed though.  Can I delete both those records our of my primary zone, readd them, and all will work OK as long as I don't poke the primary zone?  I'm assuming I can't rename a PTR record directly, right?
  Any help would be super-duper appreciated!  I have to fix this ASAP (obviously, right?).
  Thanks!

  Your DNS server isn't really serving out much in the way of DNS, it's running the self-hosted configuration that's the default when no DNS services were established during the Mac OS X Server installation and configuration.
  And if DNS services aren't right, then yes, the rest of the stack tends to be spotty.  Including OD.
  Here is how to set up DNS on Mac OS X Server and then you should be able to migrate to correct DNS services without wrecking OD.  This if your existing domain choice and set-up for the self-hosted DNS was correct.
  Basically, you get to nuke the existing forward and reverse zone (the default install creates one of each), and establish a forward zone for your domain name (and not the host's FQDN), and add your host name (which doesn't need to be an FQDN in this context) into the forward zone.  This will then apply the zone name to create the FQDN.   Server Admin should then establish one or more reverse zones, and as needed.

• Change Vendor records per Employee Master

  Using RPRAPA000 pgm we should be able to update following fields:
  Names
  Address
  Email address- User exit
  Tax No
  Bank Details
  Payment Method
  Search Term is updated with last name
  Company Code
  Fields from Reference vendor u2013 Non HR data
  Reconciliation Account: 213000
  Payment terms: ZA01
  Question: I get message "Missing master data on key selection date" and under Bank Det column, it says the data is "missing". on employee master.
  I checked info type 9 and yes it is missing.
  So are bank details mandatory for changing vendor master data?

  Check in transaction OB24 and OB23 for the activity Change Vendor (Accounting). Here in change mode the Bank details may be made mandatory for FI reasons. Check first and confirm with business before you change.

• How to change DNS zone, or how to host email outside of BC

  I have BC from Creative Cloud Suite, so I have the cheapest possible plan for BC.  Meaning I don't get any email hosting.  So I was looking to host email outside of BC.  I looked it up on google to see if it could be done (I'm really new with all this hosting stuff!), and I found that if you change the DNS zone and MX records to certain things you could.  I had to delete the MX record I had set up prior to finding out BC won't host my email, and I went to set up an Advance DNS Records.. But I'm not sure what to do! There's a lot of information I'm not sure about, and I don't know what goes where!
  I'd like to have godaddy host my email, and what I found is that I need to change my DNS zone to: mailstore1.secureserver.net and change MX records to 0 smtp.secureserver.net 10 mailstore1.secureserver.net
  I may end up finding somewhere else to host email at a later point, but right now I just want to try to figure out how to do this so I'll be able to in the future.  Any and all help is appreciated! Thank you

  Hi
  All you need to do is go to Admin > Site Settings > Site Domains and activate your new domain. You’ll have to enter an MX record for e-mail to be setup, which will be provided by godaddy.
  Here’s a similar article on the same topic:
  http://forums.adobe.com/message/4997019#4997019
  Let me know how it goes

• Autodiscover and Pinpoint DNS zone

  Hello all,
  i am still experiencing a lot of confusion with Lync and DNS records.
  I have a Standard edition front end server, Edge server and Reverse proxy.
  My internal domain space is different to the sip address
  sip address =  aaa.co.uk   internal domain  = aaa.loc
  I can't have a zone aaa.co.uk on my internal DNS servers so i created
  _sipinternaltls._tcp.aaa.co.uk
  in there i have a SRV record (5061) pointing to sip.aaa.co.uk
  I have another zone aaa.co.uk which has an a record pointing to the IP address of my FE server
  Is this right ? the Lync 2013 clients all sign in internally ok although there is some delay.
  I haven't got an lyncdiscoverinternal record and i dont know where to put this ?
  If i add a new cname or A record the fqdn is appended eg lyncdiscoverinternal.sip.aaa.co.uk
  so how does this work ? I am not sure what DNS records to put where anymore this is not straightforward.
  As a side note i have external access working and have external DNS records all set up and lyncdiscover.aaa.co.uk point to the reverse proxy but it can be slow to log in and i think i need the internal records working.
  any help please

  Let's clarify a couple of things as well:
  - Pinpoint DNS is only used when your SIP domain = internet facing domain (i.e. aaa.co.uk) AND you do not want to host a copy of your internet facing domain on internal DNS. Some customers have 100's-1000's of internet facing DNS records and do not want
  to have to manually maintain all of these records internally - this is when I see Pinpoint DNS used.
  - If you already host a copy of the internet facing domain on internal DNS, or the manual maintenance of the external records internally is not a problem, then Pinpoint DNS is not required. You simply have to manually create the DNS zone and
  corresponding records within the appropriate DNS zone internally (i.e. aaa.co.uk).
  - Depending on how things are setup, many of the DNS records required for Lync are configured either externally or internally, not both. However, there are some that will be the same, but published to different IPs depending on how you connect (internal/external).
  For instance:
  lyncdiscover.aaa.co.uk = external record ONLY (points to public RP IP)
  lyncdiscoverinternal.aaa.co.uk = internal record ONLY (points to internal FE IP)
  _sip._tls.aaa.co.uk = external record ONLY (typically points to "sip.aaa.co.uk" -> Lync Access Edge external IP)
  _sipinternaltls._tcp.aaa.co.uk = internal record ONLY (typically points to "sip.aaa.co.uk" -> internal FE IP)
  sip.aaa.co.uk = both internal and external (internal = internal FE IP; external = public Access Edge IP)
  meet.aaa.co.uk = both internal and external (internal = internal FE IP; external = public RP IP)
  Hope this helps!

• Leopard DNS Server: Zones with SPF records?

  Hi all,
  I'm trying to figure out how to setup SPF (Sender Policy Framework) records for some domains I'm currently managing with a Leopard DNS server and I don't see any documentation anywhere. Can someone please tell me if it's even an option? I'm new to running DNS with Leopard, so I could use all the help I can get.
  Sincerely,
  Israel
  Message was edited by: Israel Thompson
  Message was edited by: Israel Thompson

  Israel Thompson wrote:
  So let me see if I have this right. Any changes I want to make that will not be editable in the GUI, I want to do them in db.mydomain.com instead of db.mydomain.com.zone.apple? Easy enough. However I tried adding "v=spf1 a mx ~all" (with quotes) to my file and it appeared to have broken the dns zone. What’s the proper way to enter these in manually? Can you give me an example of how it looks in your zone files? I’ve pasted a sample of mine below. Tell me if anything is wrong.
  Israel,
  I am new to Leopard Server - so I'm no DNS guru. I, too, have not used a DNS setup tool that requires a FQDN just associate an IP with the base of the domain (mydomain.com.). How did you get your 'mydomain.com. IN A 11.22.33.44' accomplished? Did you create a new A record and put mydomain.com. in the Machine Name field?
  Here's my setup:
  ========================
  db.mydomain.com
  ========================
  ;THE FOLLOWING INCLUDE WAS ADDED BY SERVER ADMIN. PLEASE DO NOT REMOVE.
  $INCLUDE /var/named/zones/db.mydomain.com.zone.apple
  ========================
  db.mydomain.com.zone.apple
  ========================
  $TTL 10800
  mydomain.com. IN SOA ns1.mydomain.com. admin.mydomain.com. (
  2008010951 ;Serial
  7200 ;Refresh
  3600 ;Retry
  604800 ;Expire
  345600 ;Negative caching TTL
  mydomain.com. IN NS ns1.mydomain.com.
  mydomain.com. IN NS ns.mydomain.com.
  mydomain.com. IN A 64.251.168.218
  mydomain.com. IN TXT "v=spf1 ip:64.251.168.218 ip:64.251.168.220 ~all"
  www IN A 64.251.168.218
  mail.mydomain.com. IN A 64.251.168.220
  mail.mydomain.com. IN TXT "v=spf1 a ~all"
  xserve.mydomain.com. IN A 64.251.168.218
  xserve.mydomain.com. IN TXT "v=spf1 a ~all"
  ns IN A 64.251.168.218
  ns1 IN A 64.251.168.220
  mydomain.com. IN MX 10 mail.mydomain.com.
  ... where xserve.mydomain.com is my machine's hostname.
  I have a funky setup for DNS because I don't have a different, or second, DNS server (just the one on my Xserve with everything else) and my name servers are under this zone. I added the two IPs for my mail and hostname to the base SPF record. Someone could still spoof from using the name or www domains (same IPs) but I can check for it using Postfix up front. I also added "v=spf1 a ~all" in case another mail server tries to check the mailing server or hostname directly.
  You'll usually want to set a TXT "v=spf1 ~all" (SPF null) for any records that have no possibility for mail origins, like your ftp and mobile, but it appears you also have a similar issue to me - those services will be running under the same IPs as the mail service. This is why I added "v=spf1 a ~all" to all essential services (mail and hostname). I don't know what will happen if you add an SPF null to an unnecessary service that happens to also have the same IP. (Will the IP get blocked in a cache during a lookup??) So I didn't add an SPF TXT to those domains. I'm a little confused at this point. I should probably read more about it.
  http://www.openspf.org/FAQ/Common_mistakes
  Also, you'll notice I added FQDN to mail and xserve. If I do this and ensure they are in my reverse DNS PTR records then I've seen that when I add new zone records with same IPs (like for another domain) then the PTR records don't keep switching to the newest entry (why does it do that?).
  I don't think your use of the . in the CNAME records is correct. I think the CNAME records are probably unnecessary since you have already fully defined the domains in A records. Also, those A records probably don't need FQDNs (with the ending .). I only added mine for the reason noted above, concerning the PTR records.
  I hope someone who knows some more than I can chime in on this.
  Larry
  Message was edited by: Larry_S (removed mx from SPF TXT for main domain record, as it was redundant with the ip:)

• A and PTR records update under zone's folder..

  Hi Friends
  I have below power shell script which is working fine if I have single zone But I have domain folder in single zone.
  I am using below script to add A records and PTR records in zone but This script is not updating A and PTR records on domain folder under the Zone..
  $CSVFile = Import-Csv "D:\DNS update script\DNSentries.csv"
  $CSVFile | foreach {dnscmd $_.dnsserver /RecordAdd $_.Zone $_.name /CreatePTR $_.type $_.IP}
  It giving me below error:
  Command failed: DNS_ERROR_ZONE_DOES_NOT_EXIST 9601 0x2581

  Try this:
  $csvfile | foreach {
  If ($_.zone -match "\.") {
  $Domain = $_.zone
  dnscmd $_.dnsserver /RecordAdd $_.Zone $_.name /CreatePTR $_.type $_.IP
  } Else {
  dnscmd $_.dnsserver /RecordAdd $Domain "$($_.name).$($_Zone)" /CreatePTR $_.type $_.IP
  Please note the format of the child domain and host name in this command, and that the root domain is collected from the first record that has a . in it.  If your file isn't organized correctly, this won't work.  You could add a command to get
  the server's root domain, there are a lot of ways to do that but I didn't spend time on that.  You could also just hard code that since I'm guessing you're working within one DNS hierarchy.  
  I did test this and it worked - the key is in the 2nd command, it needs to be in the form of 
  dnscmd DNSServer /RecordAdd RootDomain HostName.ChildDomain /CreatePTR A 1.2.3.4
  Good luck, hope this helps!

• PTR Record not Automatically Created in dns server

  how to config when client joint to domian PTR Record  Automatically Created in dns server

  Hi Farzad_en,
  Based on my knowledge  , you need to allow Dynamic Updates .
  "Open DNS Manager. To open DNS Manager, click Start, point to
  Administrative Tools, and then click DNS.
  In the console tree, right-click the applicable zone, and then click
  Properties.
  On the General tab, verify that the zone type is either
  Primary or Active Directory-integrated.
  In Dynamic Updates, click Nonsecure and secure."
  For details please refer to following link:
  http://technet.microsoft.com/en-us/library/cc794806(v=ws.10).aspx
  Hope this helps
  Best Regards
  Elton Ji
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• DNS record is not dynamically created in DNS Zone, when joining to DNS domain

  hi
  in my test lab i have deployed two virtual machines (both are windows server 2008 R2 enterprise).
  on vm1 i have installed just DNS role (without Active directory) and created a primary non-ADintegrated zone.
  on this DNS zone, i have enabled dynamic update set to
  non-secure & secure .
  now in my vm2 (as a DNS client) , i set the ip address of this DNS server as preferred DNS server and then in system properties, on the primary DNS suffix field, i entered the name of my DNS domain (mydomain.lab)& rebooted VM2, but the a record of this
  client (vm2) is not registered (created ) in mydomain.lab zone.
  i respect the record be created like the situations which we join a client to AD domain 

  Hi  John ,
  When registering DNS record ,client will send a SOA query to find the primary server of the zone .Then send register message to the server .
  We can use nslookup to find the problem :
  Open Command Prompt
  type nslookup
  type set type=soa
  type zone name
      1. If there is positive response ,check the name of
  primary name server and the IP address of the server .
  Its name should be vm1.mydomain.lab .If not ,edit the SOA record in the zone .
  If no IP address ,edit NS record in the zone .
      2. If there is no response ,check the SOA record in the zone .
  We can manually delete and recreate the records to ensure there are right SOA and NS records .
  Here is the guide for using nslookup :
  Nslookup :
  https://technet.microsoft.com/en-us/library/cc940085.aspx
  Best Regards,
  Leo
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]
  Hi Leo, thanks for reply.
  i did all steps you mentioned but still no result.
  i put an screenshot of my desktop here , everything is shown here:

• Windows 2012 adds an incorrect name when creating a PTR Record in a /56 reverse zone using MMC

  Hello,
  I have created a reverse lookup zone for 2001:bc8:3f83:0200::/56, when I add a PTR record for 2001:bc8:3f83:0200::200:99, the MMC snap-in adds a zero group in my address and adds a record for 2001:bc8:3f83:0200:0000:0000:0000:200:99.
  Zone creation :
  http://imageshack.com/a/img673/4018/JFf7BX.jpg
  PTR creation :
  http://imageshack.com/a/img538/9239/bZqaQl.jpg
  Result :
  a PTR with address 2001:bc8:3f83:0200:0000:0000:0000:200:99 :
  http://imageshack.com/a/img673/8793/3EcxOW.jpg
  (Sorry for the image links, the forum would not allow me to post images...)

  Hi,
  According to your description, my understanding is that the name of PTR record(IPv6) displayed as 2001:bc8:3f83:0200:0000:0000:0000:200:99, but when open its Properties, the Host IP address option displayed as 2001:bc8:3f83:0200:0000:0000:200:99.
  I have the similar problem on my test device Windows Server 2012, but this problem do not occurred on Windows Server 2012 R2. They have different ways to type the Host IP address. And it is may be related to the prefix digit number – not the integer multiple
  of 16.
  You may try to update your server to the latest version. Or a work around way to manually add the PTR record of IPv6 by command line:
  dnscmd <ServerName> /RecordAdd <ZoneName> <NodeName> [/Aging] [/OpenAcl] [<Ttl>] PTR <HostName>|<DomainName>
  Detailed information reference link:
  https://technet.microsoft.com/en-us/library/cc844045(v=ws.10).aspx
  Best Regards,
  Eve Wang
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• DNS PTR Records confusion

  If there is no DHCP server on network then who will give PTR records to DNS server ?

  For workstations, no. For some servers such as a mail server, perhaps but not critical. They're more important for public IPs, some email servers won't accept mail from your server if they can't properly perform a reverse lookup on the IP address.
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications

• Changing DNS zone names after the fact

  Over 3 months ago we started setting up our server network. After discussions with administration it was determined (at the time) that we would use and register a domain name with a .net extension. So we set up a primary server with this extension and had it registered with our ISP. We subsequently added 7 other servers to the mix and as they were installed they grabbed their names from the DNS zone we had setup *.net in our DNS zone in our primary nameserver system. It was all well the tests worked we had it all going and are moving our 130 machines (including about 60 users) over next few months (and have moved about 10 users and other machines so far.
  My question is this. Back in beginning a *.org was the other option but we had problems with it and our ISP (could have been some error on our part) so we went with *.net for our domain and got that registered. Now all of a sudden as our management is wanting to move the organizational website (we are not doing that) to another service that service is tying to convince them we should have not used *.net but *.org.
  The person in charge of us is strongly asking if we can go back and setup with *.org but as I understand it I cannot go in and delete my *.net DNS zone and then rename all the servers with a .org extension but as we understand it from lynda.com and other sources it appears that we probably would have to go back and reset all the machines back up by reinstalling them after I changed the first primary nameserver. And then register the new name and wait for it to propagate?
  Are we wrong? Can we just go in and turn off the DNS in server admin and then change the zone name(s) to *.org and the host names of each server from *.net to *.org and restart DNS and find all to be well? As much as we can tell it appears that we would have to restart from scratch as all the documents and lynda.com imply we should have had our final domain name set and registered before we started to install and setup the primary and secondary servers?
  I see some examples where it is said to make such changes something needs to be done with ipconfig and not the GUI in server admin. But again I am not sure that this will work with our primary nameserver and the 7 servers under it?
  Any feedback or help about this would be appreciated. It is our preference to stay with *.net and not have to do major work as we are starting user and network migration to the new servers and hate to have have such a major setback just because one person and the web design service they want to use does not like *.net. to us it appears the horse is long out of the barn and when this was approved last fall we have gone to far to easily go back. But if it is easier to go back than we think then we are willing to try to change.
  Thanks
  russ

  foilpan wrote:
  first, what are these servers doing? are they all web servers, OD masters, simple file servers? depending on their roles, changing their names can be more or less of a problem.
  The first server we set (the name server) does incoming mail, is the DNS server for local net and such. Then there is the outgoing mail server (one of 7) a web server (another of 7) and then the rest are mostly file servers for our setup.
  second, work out that political stuff before making any changes. if everything's working fine as is, make a strong case for leaving things alone. if possible, estimate support costs for changing everything and troubleshooting, then see if management can justify it.
  Sort of my feeling. We thought we had it all worked out but then they decided to abandon the old web site (managed by someone else but associated with the old mail/network somewhat) and have a new Web design company do it and this company complained about us having chose a .net for what reason I do not know so the administrator somehow was persuaded and had no idea of the can of worms she had opened up by changing her mind. If it is too much of a hassle and it appears so in terms of delays to move rest of organization over then I hope we can convince them.
  are all these servers public facing or behind a firewall?
  They are behind a firewall on a high speed cable modem ISP service (firewall is local ASTARO machine).
  also, why not setup another dns zone for .org and point to the same hosts? that would allow you to use either .net or .org, for the most part. again, that depends on what these servers are doing.
  We suggested that but the administrator did not like having two names we have a lot of users (volunteers and such) who are not really too savvy (the nature of free and partime help I guess) and she feels they will be confused by two extensions for network, mail and web. It sure does not bother me (I have about 8 email addresses for example now .
  post more details without the political background and what the end result should be, and we'll be able to add more here.
  Ok basically we want to know with the following:
  1) main nameserver (the first server that provides the DNS zone for local *.net and serves the incoming mail)
  2) A second outgoing SMTP server to split load and do outgoing work...
  3) A third webserver doing all the web services (blog, wicki, and such)
  4) 4 file servers that are going to provide a local file server for our 4 main departments
  5) A final test server we are testing other things with-- so total of 8 servers.
  6) 8 Users out of 60 now on the network with their personal desktops or laptop machines, and a few printers and other devices all on new network.
  There are a total of 130 macs and pc's in our organization that will all eventually be on this new network with the above.
  Basically we are wondering if the main (first) DNS and incoming mail sever, and the 7 other (web, SMTP out, and file server machines) will have to be set back up from reinstall if we are to make the change from the *.net zone we have now to a *.org one?
  Any other details that would be of help?
  Thanks
  Russ
  2) second

• DNS Zone Deleted

  I have an Active Directory Domain named corp.local, also 3 child domains named west.corp.local and east.corp.local and north.corp.local. I changed the SVR precedence level on corp.local to 0,and making the rest 10. suddenly i saw duplicates SVR records,
  for each i had 1 with 0 precedence and 1 with 10 precedence level.
  Then later the following day, i realized that the corp.local DNS Zone is now deleted/unavailable on each of the child domains, 
  Please help, what could be the issue...
  I also have an error code 4015, which i noticed on some forums, it is caused by disabling IPv6, which is infact disbaled on each of the domain controller
  Zone transfer is also enabled for all Server only on Server on Name Server Tab... :-(
  Please help... why am i getting dubicate SVR and why is the corp.local DNS zone not available anymore on the other DNS severs
   

  Hi,
  The DNS records or zones disappearing, or don't appear to be correct, is due to the following reasons,
  1. Someone is either intentionally or unintentionally deleting the data. 
  2. There are duplicate zones. 
  Checkout the below link on article for resolving this issue,
  http://msmvps.com/blogs/acefekay/archive/2009/09/02/using-adsi-edit-to-resolve-conflicting-or-duplicate-ad-integrated-dns-zones.aspx 
  Regards,
  Gopi
  www.jijitechnologies.com

• 10.4.4 update and now my DNS zones aren't visible!

  After the 10.4.4 update, I can't see my DNS zones, and the log says there are now errors . for example: servermgr_dns: Bad zone file for zone macs4ever.com MX/CNAME line: "@" before A line. Ignoring.
  This wasn't an issue before. Has something changed in the zone formatting?
  What file can I edit to correct the syntax if needed.
  I appreaciate your time and assistance,
  matt caswell

  Note that I write my own zone files and prefix them with "db." just so that I do not overwrite the default ones. The name of the zone file is in itself not critical, as long as the correct file is referenced in named.conf.
  My zone definitions in /etc/named.conf...
  // a caching only nameserver config
  zone "." IN {
  type hint;
  file "named.ca";
  zone "localhost" IN {
  type master;
  file "db.localhost";
  allow-update { none; };
  zone "0.0.127.in-addr.arpa" IN {
  type master;
  file "db.127.0.0";
  allow-update { none; };
  zone "foo.com" in {
  file "db.foo.com";
  type master;
  zone "0.0.10.in-addr.arpa" IN {
  file "db.10.0.0";
  type master;
  ============================
  The Zone Files in /var/named...
  ============================
  Zone File "db.localhost"
  $TTL 86400
  localhost. IN SOA server.foo.com. postmaster.foo.com. (
  42 ; serial (d. adams)
  3H ; refresh
  15M ; retry
  1W ; expiry
  1D ) ; minimum
  IN NS server.foo.com.
  IN A 127.0.0.1
  ====================
  Zone file "127.0.0" (reverse zone for localhost)
  $TTL 86400
  0.0.127.in-addr.arpa. IN SOA server.foo.com. postmaster.foo.com. (
  2006011511 ; Serial
  3h ; Refresh
  1h ; Retry
  1w ; Expire
  1h ) ; Minimum
  0.0.127.in-addr.arpa. IN NS server.foo.com.
  1.0.0.127.in-addr.arpa. IN PTR localhost.foo.com.
  ==========================
  Zone file "db.foo.com"
  $TTL 86400
  foo.com. IN SOA server.foo.com. postmaster.foo.com. (
  2005101301 ; serial
  3h ; refresh
  1h ; retry
  1w ; expiry
  1h ) ; minimum
  ; NAME SERVERS
  foo.com. IN NS server.foo.com.
  ; ADDRESSES FOR CANONICAL NAMES
  localhost IN A 127.0.0.1
  server IN A 10.0.0.1
  ; ALIASES
  ical.foo.com. IN CNAME server
  mail.foo.com. IN CNAME server
  ftp.foo.com. IN CNAME server
  ; MAIL RECORDS
  foo.com. IN MX 0 server
  ======================
  Zone File db.10.0.0 (reverse zone for foo.com)
  $TTL 86400
  0.0.10.in-addr.arpa. IN SOA server.foo.com. postmaster.foo.com. (
  2006011500 ; serial
  3h ; refresh
  1h ; retry
  1w ; expiry
  1h ) ; minimum
  0.0.10.in-addr.arpa. IN NS server.foo.com.
  ; REVERSE LOOKUPS
  1 IN PTR server.foo.com.
  ========================
  Note that you may have different records but hopefully you get the drift of it.
  "Bad zone file for zone domain.com MX/CNAME..."
  The particular cause, for me, of the above error was that, in db.foo.com, I used to have the following for the MX record...
  foo.com. IN MX 0 mail
  This created the error message as there was not a direct A record for 'mail'. The amended zone file now works... but...
  I still have an issue with this... In my case my DNS is purely for the private LAN but if it was a public DNS then I would have needed to set up the server with a hostname "mail.foo.com" instead of "server..." and then alias 'server' to 'mail'. Something you really should know before setting up the server
  (Actually, I don't even know why I have the MX record in the internal DNS as the mail server can function quite happily without it.)
  Anyway, I find this on-line reference really handy although you can get a bit 'lost' in all the links within it...
  http://www.zytrax.com/books/dns/
  Have fun.
  -david

• DNS Zones Losing Info

  Out of 8 DNS zones, I have two that are misbehaving.
  I enter zone info and create hosts. All appears fine. But when I click on Save, when the screen redraws, all of the host info is gone. Also, clients cannot resolve, so I know it is actually being lost and not hidden.
  Can't understand what is causing this. Records are fine, believe me.
  Also tried deleting these two zones to recreate. After clicking Save, they reappear... again, with no host records!
  I also tried renaming the zones to deleteme.com, etc. Save. They came back under their original names!

  I am experiencing exactly the same issues. I finally got rid of the zones that SA couldn't delete by editing the files so I was working again from a blank sheet of paper (as it were). BTW, I needed to delete the zones because of the bug that causes a zone to get stuck as 'example.com' due to it being saved prior to renaming it to what it should be. Anyway...
  Simply using SA I created a new zone, renamed it and added a record or 2 and saved. All appeared correct and I added maybe another 20 records (some A, some CNAME) with regular saves and all appeared to be ok (except it creates a separate reverse zone for every C Class address, but that's another issue). During this time SA had a tendency to hang for a short while, then be unresponsive so I would have to quit it and start again. But finally everything seemed to be OK and I left it till the next day...
  when I found it would not display any records in the primary zone. Sometimes if I 'opened' (clicked the triangle) a reverse zone I would see the PTR record(s), but then the screen would flicker and the record(s) would disappear. The forward/primary zone simply won't show anything - even its SOA info appears missing.
  I have looked at the files and can see no obvious problem and in any case they were all created by SA so they ought to be correct. Working one day, not the next, with no changes in between. This reminds me of someone else's products.
  The zone info is there, but SA won't show it so I cannot edit it further as it needs before being usable. Basically now I'm stuffed.