DNS reverse by subnet configuration.

I have two /28 subnets assigned on different /24 networks. I have recently been given DNS authority for the reverse lookups on those subnets. Since I don't want to be prodding around the named.conf file with a text editor and setting it up by hand the way that it is normally done, is there a proper way to do it with the server software?
The usual method is explained in the client section of http://www.zytrax.com/books/dns/ch9/reverse.html, so I want to be able to set this up in the GUI.
If I have to set it up with a text editor, will the GUI parse the changes without getting too confused?
Is there a way to include another named.conf file for further rules that are outside the normal named.conf, like a local.conf or reverse.conf?
Thanks for any help.
-Cameron

The problem with not using the GUI is Apple enterprise support. If they have any clue that you aren't using the GUI, or think that your problem might be a result of tampering with the configs outside of the GUI, they have been known to refuse to look at a problem until you remove the changes.
I had one instance where I installed Squirrelmail and Mailman and they suggested that if they couldn't figure out why their software was reverting my postfix main.cf file, I'd have to uninstall them before they'd help me.
I actually prefer managing configs by hand, and if I understood the internal workings of Apple's Server implementation, I'd probably do a lot more. Fortunately, in a way, I'm unable to work because of medical reasons, so I plan on spending a bunch of time tracking down how the Server software actually does its magic, which should make me more comfortable making changes.
I've already got a few pet peeves regarding the way the server does logging. Why not pick one directory for logs instead of half a dozen, depending on what you are running.
Once I understand the internals of Server, I won't be so hesitant about managing configs with CLI, and won't be so dependent on Apple enterprise support.

Similar Messages

  • To get DNS, Local IP, Subnet Mask are...

    I need to be able to figure out what the local DNS, IP and subnet mask are... I am not running an applet, this is a full blown java program... I know this and similar questions have been asked tons of times but are they any way of doing this across multiple platforms... I know you can do it by calling a runtime(), then doing IPConfig /ALL and pulling the info out of there...
    Any alternatives?
    Thanks
    Jeremy

    You can get the host name and IP address pretty easily using InetAddress.
    InetAddress localHost = InetAddress.getLocalHost();
    String name = localHost.getHostName();
    String ip = localHost.getHostAddress();

  • DNS: reverse zone comes back after remove and some follow up issues

    hello community,
    after installation of OSL i had setup dns with a primary zone.
    the automatically created reverse zone for my internal network is fine.
    whenever i enter a new system the default for the ip address is 10.0.0.1 and the reverse zone is automatically setup for this ip address.
    whenever i remove this reverse zone it come back automatically after saving the dns configuration.
    with this come some follow up error.
    server admin claim that there is no name server configured for this reverse zone.
    when i configure it the configured name server entry vanished after clicking the save button.
    when i try to configure settings i can not. i get the error message that the configuration can not be saved cause of the missing name server for the reverse zone i am not using ....
    in the log file i can see that the file for reverse zone can not be found.
    when i check the dns configuration in the shell i can see that the reverse zone file is not there.
    someone has an idea
    - whats the best way to fix this?
    - why is the gui still showing the reverse zone i am not using?
    - is the dns configuration also in the ldap db with wrong entries?
    regards
    christian

    Clean out your zone definitions, and start over. Server Admin is unfortunately seemingly fussy around the authoritative server stuff and the order stuff gets entered, and it seems you can get into a sequence where it doesn't have what it needs. I had encountered couple of cases when I was in a similar state as you're in now, and I ended up clearing and deleting the primary zone and re-adding the zone and the hosts, being careful to add the authoritative server as the first step of adding a zone.

  • Hyper-V Replication - Subnet Configuration Between Datacenters?

    I'm designing a DR solution in a geographically separate datacenter which will use Hyper-V 2012 R2 Replication to replicate several of our VMs to another Hyper-V cluster. The VMs will run a mix of Linux and Windows, with the Windows servers being Exchange,
    SharePoint, WSUS, etc.
    I currently have a static IP assigned to all servers and VMs, i.e. I'm not using static DHCP reservations.
    I have the ability to extend the private LAN subnet (let's call it 192.168.1.1) between the two datacenters over the public Internet using my firewall's VPN capability, but I'm wondering if there is a recommended best/better practice for this?
    Is it okay to extend the subnet so in a fail-over scenario I can just power the VMs on in the DR datacenter without much manual intervention? Or would it be a better idea to configure my servers with a static DHCP reservation, so when they come up in the
    DR datacenter they can pull an IP on a unique subnet?

    Hello Matt,
    The answer is yes for Hyper-V 2012 R2, however this feature was available only for Windows Guest OS'es in Hyper-V 2012.
    This works only on synthetic network adapters, not legacy network adapters, and it requires Windows XP SP2/Windows Server 2003 SP2 and newer OS'es to be running on the virtual machine to work. This
    also works with Linux virtual machines that are running the latest Linux distributions.
    As a good practice is to complete the failover TCP/IP configuration on the primary virtual machine with its normal IP configuration. In that way, if the replica is ever activated, replication is
    reversed, and the virtual machine is then failed back to what was the primary, and the correct IP address for the primary location can automatically be put back.
    Hope this help.
    Regards,
    Charbel Nemnom
    MCSA, MCSE, MCS, MCITP
    Blog: www.charbelnemnom.com
    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial
    to other community members reading the thread.
    This is incredible. We are running Hyper-V 2012 R2 with the latest CentOS 6.5 and synthetic network adapters. Thank you so much.
    Oh, hey! I read your blog! :)

  • Looking for best practices when creating DNS reverse zones for DHCP

    Hello,
    We are migrating from ISC DHCP to Microsoft DHCP. We would like the DHCP server to automatically update DNS A and PTR records for computers when they get an IP. The question is, what is the best practice for creating the reverse look up zones in DNS? Here
    is an example:
    10.0.1.0/23
    This would give out IPs from 10.0.1.1-10.0.2.254. So with this in mind, do we then create the following reverse DNS zones?:
    1.0.10.in-addr.arpa AND 2.0.10.in-addr.arpa
    OR do we only create:
    0.10.in-addr.arpa And both 10.0.1 and 10.0.2 addresses will get stuffed into those zones.
    Or is there an even better way that I haven't thought about? Thanks in advance.

    Hi,
    Base on your description, creating two reverse DNS zones 1.0.10.in-addr.arpa and 2.0.10.in-addr.arpa, or creating one reverse DNS zone 0.10.in-addr.arpa, both methods are all right.
    Best Regards,
    Tina

  • DNS / BIND  - Can I configure primary and standby forwarders?

    Hi all,
    I have on Solaris 10 (x86) a DNS server (BIND 9.3.6-P1) that relies exclusively on two “forwarders”: 155.28.144.13and 154.23.134.32.
    The configuration is as follow:
    # cat /etc/named.conf
    acl "CSClan" { 192.168.4.0/24; 192.168.7.0/24; }; //CSC internal LAN ip address range
    options {
            directory "/var/named";
            forward only;
            forwarders {
                    155.28.144.13;
                    154.23.134.32;
                 allow-query { "localnets"; };
    # cat /etc/resolv.conf
    nameserver 127.0.0.1
    When I check with snoop, I can see requests sometimes to one forwarder, sometimes to the other.
    Is it possible to configure DNS to use primarily one forwarder?
    Thanks in advance for your support.
    Best Regards,
    Rui Vilão

    In 10g, dataguard started to support different binaries on primary and standby database servers with the same OS family. For example Microsoft Windows 64-bit on primary and Microsoft Windows 32-bit or Microsoft Windows 64-bit for AMD on standby database server. However with 11g, dataguard also supports different OS on primary and standby servers
    Role Transitions for Data Guard Configurations Using Mixed Oracle Binaries [ID 414043.1]
    Data Guard Support for Heterogeneous Primary and Physical Standbys in Same Data Guard Configuration [ID 413484.1]

  • CUP (reverse) proxy server configuration

    Hi All,
    I am trying to get the CUP application URL (configuration -> workflow -> SMTP server)  that is inserted in the emails to be replaced by our reverse proxy URL.
    Does anyone happen to know whether there is a setting somewhere, most likely a config tool property sheet, which enables to set a proxy url?
    Thanks in advance.
    George

    OK, Got feedback from GRC development team, has been identified as bug, will be fixed in SP14 for December 2010.

  • SAP reverse Proxy Server Configuration

    Hi All,
    We wanted to configure reverse proxy in our landscape, I will explain how we have through of implementing it.
    The request over the internet will be recieved by Our EP Server AAA which will act as a reverse proxy server and the request will be mapped to the Production EP server BBB which will serve the request.
    I have found few links on the internet explaining the concept of DMZ but still I dont have much clear Idea about this.
    If anyone can share any relevant link on, how this can be implemented will be really great.
    Thanks,
    Sharib Tasneem

    Hi  Sharib
    Check the link below , may be useful
    http://help.sap.com/saphelp_nwce10/helpdata/en/d8/00413549394a85b28bae68b715e6cb/content.htm
    833960 - supported Application Gateway Configurations
    1577357 - How To Change the URL Used to Access the Portal on NetWeaver 7.30
    Regards
    Pyari

  • Reversal of SWU3 Configuration steps.

    Hi Experts,
    I need the steps to reverse the configuration in SWU3.
    Please reply ASAP.
    Thanks in advance.
    Regards
    Siva

    Hi Experts,
    I need the steps to reverse the configuration in SWU3.
    Please reply ASAP.
    Thanks in advance.
    Regards
    Siva

  • ASA5520 Routing/Subnet Configuration Help

    Hi,
    I'm not much of a networking guy and need some help getting my ASA5520 to play ball. The general gist is that I have 3 subnets (xxx.xxx.1.xxx,
    xxx.xxx.2.xxx, and xxx.xxx.5.xxx), two of them (.1 and .2) are on ASA1 and can see each other fine. One (.5) is on ASA2 and can see .1 (ASA2's outside interface is assigned a .1.xxx IP) systems but not .2. I believe it's because ASA2 has no default route for the .2 subnet and I have no idea how I would go about getting that set up. So there's my question, how can I make the .5 subnet on ASA2 evident to systems on the .1 and .2 subnets and viice versa?
    For clarification here's a rough diagram of what I currently have:
                                      <---->xxx.xxx.001.xxx subnet<---->[ASA2]<---->xxx.xxx.005.xxx subnet--
    INTERNET<-->[ASA1]-{
                                      <---->xxx.xxx.002.xxx subnet<---->
    And here's what I need:
                                      <---->xxx.xxx.001.xxx subnet<---->
    INTERNET<-->[ASA1]-{                                                   }[ASA2]<---->xxx.xxx.005.xxx subnet--
                                      <---->xxx.xxx.002.xxx subnet<---->
    I really appreciate any help you can give me.

    I got the network setup, but did not get what you are trying to do. Do you have 2 WRT54Gs there? Are you trying to turn off DHCP server of second WRT54G? A detailed information would be appreciated.

  • DNS caching problem when configuring Windows clients for SCAN

    I have a Windows 2008 R2 server running apps that connect to a RAC cluster database using the SCAN address. The SCAN address however always returns the same IP when you ping it from that server. If I flush the DNS cache I get a different address, but again the same one all the time. I believe this is caused by the fact that DNS caching is enabled on Windows by default. This has caused problems when one of the RAC nodes goes south and the cached SCAN IP is not responding. The applications lose their connections, try to reconnect, but can't because they keep using the same dead SCAN IP.
    I suggested we disable the DNS Client service on those machines so that the SCAN name correctly cycles through the addresses but the Windows admin says not to do this. Is there a documented practice somewhere that this is OK to do for Windows RAC clients? Or is there a way to disable caching just on the SCAN name but leave it enabled from every other host name?
    TIA

    What happened was the SCAN VIP did not fail over. The node VIP did not fail over. The database instance was running but I could not connect to it even locally as sysdba. I got the message "protocol adapter error". This normally only occurs on Windows for local connections when either (a) the Oracle service is not running, or (b) you didn't set the ORACLE_SID variable correctly. Neither was true.
    I tried "crsctl stop crs" but it could not stop the listeners.
    I rebooted the server. During the reboot, neither the VIP no SCAN VIPs failed over. It's almost as if CRS either didnt recognize tat the other node had been shutdown, or it didn't care.
    I have never seen this happen before.
    For the record this is Oracle RAC 11.2.0.1.

  • How to Install DNS ROLE and its FQDN service and Reverse Lookup zone in Server Core using Powershell?

    Hi
    I am Setting A Lab Scenario That the PC name "Core2012" i.e. Server Core 2012 Will be Domain Controller.
    Using PowerShell I have done this Task
    Change hostname ; Configure IP address and Preferred DNS address ; Disable IPv6 ;
    Configure Firewall ; Even Active Directory Role install.
    Now problem occur
    Well I have know to install DNS role install-WindowsFeature DNS
    Ok
    But; 
    How to configure FQDN ; Restore mode password ; Setting up global catalog server ;and configure Reverse Lookup zone Using powershell
    I have search many Forums but I am not getting to touch with it.
    So I Need a help to set and Configure DNS using Powershell
    Thank You!!!
    sagarpdalvi

    Hi Sagarpdalvi,
    To set the Safe mode password with powershell, please refer to the cmdlet Install-ADDSDomainController, to enable global catalog(GC), please run the cmdlet "Set-ADObject" after install Active Directory on the core server, to configure Reverse Lookup zone,
    please refer to the cmdlet
    Add-DnsServerPrimaryZone.
    To configure DC with powershell, please check the scripts:
    Installing a Domain Controller on Windows Server 2012
    R2 Core
    Enabling and Disabling the Global Catalog
    To configure DNS, the Domain Name System (DNS) Server Cmdlets should be helpful for you:
    http://technet.microsoft.com/en-us/library/jj649850.aspx
    I hope this helps.

  • SCAN configuration with 11g without DNS.

    Hi,
    We need DNS for SCAN IP configuration on 11g installation/upgradation. If we are having DNS we can use DNS name and install Grid Cluster.
    Without DNS we can overcome SCAN configuration by using any one ip updation with SCAN on etc/host entry.
    Please Clarify :
    1) Updating the IP on etc/host entry, should be Public/private/vip sequance ?
    2) After configuring SCAN without DNS, what are all exact steps need to do on Windows 2003 server? (by using srvctl modify command)
    3) We are having mirror on OS level, currently using External redundancy on ASM with 10g. If we need same setup on 11g, can we create single shared disk on storage? (OCR & VOTING disk will create within ASM)
    Regards,
    Raja..

    Hi,
    user12159566 wrote:
    1) Updating the IP on etc/host entry, should be Public/private/vip sequance ?Order in /etc/host is of no importance, as long as each entry has its own. Note you will only be able to use 1 IP for the SCAN.
    BTW. in 11.2. there is no need to specify a private hostname or entry in /etc/host, since the "subnet" and network card(s) is/are used for identification
    2) After configuring SCAN without DNS, what are all exact steps need to do on Windows 2003 server? (by using srvctl modify command)After you created the SCAN entry in DNS and removed the /etc/host entry (with the SCAN), you can simply do a "srvctl modify scan_listener". This should update the info and create the additional 2 VIPs and SCAN Listeners.
    3) We are having mirror on OS level, currently using External redundancy on ASM with 10g. If we need same setup on 11g, can we create single shared disk on storage? (OCR & VOTING disk will create within ASM)While you could also use only one disk with external redundancy diskgroup for all (will work), I recommend using at least 4 disks for the diskgroup. There is a slight performance increase when having 4 disks/luns in a diskgroup instead of one, even if from the same storage. Has to do with I/O queses in the OS. Furthermore extending ASM is easier, since Oracle recommends to have luns with the same size in a diskgroup. So you just have to add a small lun if you run out of space, than to provision a big new one.
    However you may stay with one disk/lun.
    Regards
    Sebastian

  • Slow JDBC calls with wrong configured DNS

    We recently found out that a wrong configured DNS Server can cause oracle JDBC Clients to react extremly slow. (1 second per simple sql statment)
    We have found also that if the DNS server is disabled on server side (8.1.7.1 Oracle, Redhat 6.2 server) the system responds with normal speed.
    It seems for us that Reverse lookups are done for any SQL Statement sent from the client and not only for the first connection.
    Does anybody know how to disable this Reverse DNS-Lookups on Server side because this may also cause a slowdown if the DNS-Server is correctly configured or all clients are defined in /etc/hosts.
    Thank you in advance!

    We recently found out that a wrong configured DNS Server can cause oracle JDBC Clients to react extremly slow. (1 second per simple sql statment)
    We have found also that if the DNS server is disabled on server side (8.1.7.1 Oracle, Redhat 6.2 server) the system responds with normal speed.
    It seems for us that Reverse lookups are done for any SQL Statement sent from the client and not only for the first connection.
    Does anybody know how to disable this Reverse DNS-Lookups on Server side because this may also cause a slowdown if the DNS-Server is correctly configured or all clients are defined in /etc/hosts.
    Thank you in advance!

  • Mail server and DNS configuration

    I have an XServe G4 running Mac OS X 10.4 Tiger Server, and I have successfully configured two domains that I purchased from GoDaddy as websites on this XServe. It's behind an Airport Extreme, and I have forwarded a bunch of ports in order to enable FTP, SSH, Web, remote Server Administration, webmail, and I have also forwarded the IMAP and SMTP ports. All of these services work except for email, so I am wondering if there is any special DNS settings that I need to configure in the GoDaddy total dns configuration page. I have the MX record pointed directly to my IP, just like the A record. I also have mail.mydomain.com pointed to the A record's IP (maybe I described that poorly, but I hope it gets the point across). I am able to log into webmail and send email out to other people, but when I try replying back to the email which I sent from webmail, I get a bounced message. I also cannot configure a Mail client, but I think I need to get the accounts at least working first. Can someone provide a list of DNS requirements or server configuration requirements for me to check off in order to make this happen? Does anyone know of any great resources to learn this kind of stuff? I'm kinda new to the server thing.
    Thanks!
    Paul

    postconf -n results:
    command_directory = /usr/sbin
    config_directory = /etc/postfix
    daemon_directory = /usr/libexec/postfix
    debugpeerlevel = 2
    html_directory = no
    inet_interfaces = localhost
    mail_owner = postfix
    mailboxsizelimit = 0
    mailbox_transport = cyrus
    mailq_path = /usr/bin/mailq
    manpage_directory = /usr/share/man
    mydestination = $myhostname,localhost.$mydomain,localhost,rubenkalath.com
    mydomain = rubenkalath.com
    mydomain_fallback = localhost
    myhostname = mail.rubenkalath.com
    mynetworks = 127.0.0.0/8
    mynetworks_style = host
    newaliases_path = /usr/bin/newaliases
    queue_directory = /private/var/spool/postfix
    readme_directory = /usr/share/doc/postfix
    sample_directory = /usr/share/doc/postfix/examples
    sendmail_path = /usr/sbin/sendmail
    setgid_group = postdrop
    smtpdtls_certfile = /etc/certificates/Default.crt
    smtpdtls_keyfile = /etc/certificates/Default.key
    smtpdusetls = no
    unknownlocal_recipient_rejectcode = 550
    virtualmailboxdomains = hash:/etc/postfix/virtual_domains
    virtual_transport = lmtp:unix:/var/imap/socket/lmtp
    ps U _postfix results:
    ps: _postfix: no such user
    tail -20 /var/log/mail.log results:
    May 15 15:55:27 sincity postfix/cleanup[1257]: 765DC4517A: message-id=<[email protected]>
    May 15 15:55:27 sincity postfix/qmgr[1239]: 765DC4517A: from=<[email protected]>, size=881, nrcpt=1 (queue active)
    May 15 15:55:27 sincity postfix/smtpd[1254]: disconnect from localhost[127.0.0.1]
    May 15 15:55:27 sincity postfix/pipe[1259]: 765DC4517A: to=<[email protected]>, relay=cyrus, delay=0, status=sent (mail.rubenkalath.com)
    May 15 15:55:27 sincity postfix/qmgr[1239]: 765DC4517A: removed
    May 15 15:58:09 sincity postfix/smtpd[1338]: connect from localhost[127.0.0.1]
    May 15 15:58:13 sincity postfix/smtpd[1338]: lost connection after CONNECT from localhost[127.0.0.1]
    May 15 15:58:13 sincity postfix/smtpd[1338]: disconnect from localhost[127.0.0.1]
    May 15 16:06:09 sincity postfix/postfix-script: refreshing the Postfix mail system
    May 15 16:06:09 sincity postfix/master[590]: reload configuration
    May 15 16:12:48 sincity postfix/smtpd[1709]: connect from localhost[127.0.0.1]
    May 15 16:12:54 sincity postfix/smtpd[1709]: lost connection after CONNECT from localhost[127.0.0.1]
    May 15 16:12:54 sincity postfix/smtpd[1709]: disconnect from localhost[127.0.0.1]
    May 15 16:28:58 sincity postfix/smtpd[2068]: connect from localhost[127.0.0.1]
    May 15 16:28:58 sincity postfix/smtpd[2068]: 1FA354537C: client=localhost[127.0.0.1]
    May 15 16:28:58 sincity postfix/cleanup[2071]: 1FA354537C: message-id=<[email protected]>
    May 15 16:28:58 sincity postfix/qmgr[1530]: 1FA354537C: from=<[email protected]>, size=776, nrcpt=1 (queue active)
    May 15 16:28:58 sincity postfix/smtpd[2068]: disconnect from localhost[127.0.0.1]
    May 15 16:29:02 sincity postfix/smtp[2072]: 1FA354537C: to=<[email protected]>, relay=mercury.gatech.edu[130.207.192.26], delay=4, status=sent (250 Ok: queued as 67542CDF86)

Maybe you are looking for

  • I am appalled

    so I've been with Verizon Wireless going on about 2 years maybe I spend approximately on guesstimate about $400 an average for two phones and a tablet. most of the time it's closer to five but I don't complain. mind you I left MetroPCS of which whom

  • PERFORMANCE of this REPORT object

    Hi Experts I have a REPORT object, having a few SELECT Queries in it. I need to analyze the PERFORMANCE of this REPORT object. How can I analyze the performance of a SELECT Query alone in it - that is time taken to execute this SELECT Query alone? Ho

  • SQL Loader command cannot be called from SQLDeveloper.

    I read that SQL*PLUS will not be supported on Oracle 12C. Will Oracle add the ability to call SQL*Loader from SQLDeveloper. I find the SQL*Loader utility to be very useful for Data Modeling and the importing of unusually formatted data into multiple

  • Convert Movie for iPod-sound disappeared

    I tried to convert a video for iPod by using "Advanced/Convert Selection to iPod". After it's converted, the sound is gone. Any idea why? Also, the video quality is bad when I view it in iPod, anyway I can adjust it? Thanks!!

  • Apple finnaly adresses the "WHINE" issue

    http://macdailynews.com/index.php/weblog/comments/10076/ is this what this means? 17" MacBook Pro 2.16 100GB@7200rpm Glossy   Mac OS X (10.4.7)   Boot Campo XP SP2