Question about DNS zones

Here's my problem..
I have an internal webserver that has an external address. Clients on my internal network (the same as the webserver) can't access the internal server using its external address. I got around this in a Windows enviornment (there are multiple buildings with different environments) by creating a primary DNS zone with the external address of the server, and an A Host pointing to the internal address.
I'm having some trouble getting this setup on Lion server, and rather than breaking DNS again, I figured I'd ask around first. Like I said, I tried adding a new zone, and did something that broke DNS. I had to manually edit the configuration file to remove the new zone. The FQDN is different from the name of the Mac server.
Basically the Mac server is school.com, and I need school.google.com to point internally. These obviously aren't the real addresses, but it illustrates what I need to accomplish.
Does this make sense? Is it possible with Lion Server?
Thanks

If you want to access the webserver internally as school.google.com you cannot and should not try to create a google.com zone. If your website has your own private domain e.g. www.myschool.edu then as you (presumably) own and control that domain then you can run what is typicially called a 'split-horizon' DNS setup.
You could have a second domain name just for the website which still needs to be owned by you, this would let you use say domain.local as the main internal Active Directory domain and a second dmoain like myschool.edu for the website.
With a spit-horizon setup you need two DNS servers, one would be used just internally, the other would be used just externally. So anyone outside your network i.e. on the Internet would use the external DNS server (often your ISP), and anyone on your LAN uses the internal one. The internal one would map www.myschool.com to your internal LAN IP address of your webserver, the external DNS server would map the same www.myschool.edu to your internet routers address. Your router would then have to setup a NAT port mapping rule to forward the HTTP traffic to your internal webservers IP address. You can still have multiple websites hosted internally and be accessible externally but all of them must run on a single internal webserver as the NAT port mapping can only map to a single IP address per protocol (port number).

Similar Messages

  • A question about DNS subdomain

    This is a question about DNS subdomain.
    The DNS server for the parent DNS domain is dns1.ours.com.
    The DNS server for the child/sub DNS domain is bee.child.ours.com.
    Configurations on dns1.ours.com:
    File: db.ours.com�F
    @IN SOA dns1.ours.com. postmaster.ours.com. (
    10051215 ; sn
    86400 ;refresh
    7100 ;retry
    777600 ;expire
    126000 ) ;min
    @ IN NS dns1.ours.com.
    dns1 IN A 210.x.x.15
    �c
    [color=Blue]child.ours.com. IN NS bee.child.ours.com.
    bee.child.ours.com. IN A 210.x.x.10[color]
    I did not changed anything in named.conf.
    Configurations on bee.child.ours.com:
    File db.child.ours.com:
    @ IN SOA bee.child.ours.com. test.child.ours.com (
    10051215 ; sn
    86400 ;refresh
    7100 ;retry
    777600 ;expire
    126000 ) ;min
    @ IN NS bee.child.ours.com.
    bee IN A 210.x.x.10
    test IN A 210.x.x.x
    File named.conf:
    options {
    directory "/var/named";
    zone "." {
    type hint;
    file "master/db.cache";
    zone "0.0.127.in-addr.arpa" {
    type master;
    file "master/db.0.0.127";
    zone "x.x.210.in-addr.arpa" {
    type master;
    file "master/db.child.ours.com.rev";
    zone "child.ours.com" {
    type master;
    file "master/db.child.ours.com";
    #nslookup
    Default Server: 210.x.x.10
    Address: 210.x.x.10
    // bee.child.ours.com: the DNS server for the child/sub DNS domain: child.ours.com
    www.ours.comServer: 210.x.x.10
    Address: 210.x.x.10
    *** localhost can't find www.ours.com: No response from server
    //failed to resolve A records in the parent domain, but can resolve A records in its own domain and other domains on the Internet.
    set type=ns
    ours.comServer: 210.x.x.10
    Address: 210.x.x.10
    Non-authoritative answer:
    ours.com nameserver = dns1.ours.com
    Authoritative answers can be found from:
    dns1.ours.com internet address = 210.x.x.15
    //find the DNS server for the parent domain
    > server 210.x.x.15
    // dns1.ours.com: the DNS server for the parent DNS domain: ours.com
    Default Server: dns1.ours.com
    Address: 210.x.x.15
    test.child.ours.comServer: dns1.ours.com
    Address: 210.x.x.15
    *** dns1.ours.com can't find test.child.ours.com: No response from server
    //failed to resolve A records in the child domain, but can resolve A records in its own domain and other domains on the Internet.
    set type=ns
    child.ours.comServer: dns1.ours.com
    Address: 210.x.x.15
    Non-authoritative answer:
    child.ours.com nameserver = bee.child.ours.com
    Authoritative answers can be found from:
    bee.child.ours.com internet address = 210.x.x.10
    //find the DNS server for the child domain
    > server 210.x.x.100
    // a public DNS server on the Internet
    Default Server: [210.x.x.100]
    Address: 210.x.x.100
    set type=a
    www.ours.comServer: [210.x.x.100]
    Address: 210.x.x.100
    Non-authoritative answer:
    Name: www.ours.com
    Address: 210.x.x.72
    //find the A record in the parent domain
    test.child.ours.comServer: [210.x.x.100]
    Address: 210.x.x.100
    Non-authoritative answer:
    Name: test.child.ours.com
    Address: 210.x.x.x
    //find the A record in the child domain
    I wonder why. It is BIND v8.2.2.
    Thanks.

    Hi AAnotherUser_,
    Based on your description, the internal domain name is different from the external domain name, and the web server is hosted internally. And the goal is that the internal user can
    access the web server by using an URL which include the MyCorp.com.
    In this scenario, internet users access your domain name by connecting to the WAN IP address of your router. However, to make the internal users access the website, you would need
    to create the external domain name as a zone on your internal DNS server.
    After creating the DNS zone, right click the zone you created, choose New Host Record.
    Type in the hostname, such as ‘www’, and provide the internal private IP address of your internal web server.
    For more details, please refer to Ace’s blog below, the
    Scenario 2: Different Internal and External but you are hosting the webserver internally
    http://blogs.msmvps.com/acefekay/2009/09/03/split-zone-or-no-split-zone-can-t-access-internal-website-with-external-name/
    Best Regards,
    Tina

  • Question about the Zone Tabs.

    <Current Situation>
    I use the Zone Tabs Web Part in SharePoint 2010.
    I am considerring about migration from SharePoint 2010 to Sharepoint 2013(Sharepoint 2010 experience).
    I would like to evaluate whether the Zone Tabs is available in Sharepoint 2013(Sharepoint 2010 experience).
    <Questions>
    #1. I found a article about the Zone Tabs. And there was source codes in MSDN Code Gallery.
    Please check below URL.
    URL:http://blogs.msdn.com/b/bobgerman/archive/2008/02/19/back-in-the-zone-with-zonetabs.aspx
    For the above reasons. My understanding is the Zone Tabs is free Web Part.
    Is it correct or not?
    #2. Could you tell me URL that possible to dowmload the Zone Tabs Web Part in Sharepoint 2013(Sharepoint 2010 experience).
    I look forward to hearing from you.

    Thank you for your reply!
    I would like to ask a question.
    #1. "SharePoint 2010/2013 Tabbed Web Part Zone" is same web part as below.
    URL:http://sharepoint-applications.com/wp-content/themes/thesis/custom/pdf/zonetabsreadme.pdf
    I look forward to hearing from you.

  • A question about DNS records and split DNS

    Hello
    Can someone please help me with the following question
    If I have an AD integrated DNS zone (currently running on Windows 2003 R2, soon to be updated to 2012 R2)
    lets call the domain MyDomain.Local and here I have all my local Server, Computer and related records (A, CNAME MX etc.)
    Also I have an external internet domain lets call is MyCorp.Com (both of these domain are completely separate)
    I have a requirement for an internal URL (Web Server) to point to an internal host, however for various reasons (which I will not go into here), the company wants the format of this internal URL to include the MyCorp.Com element in the overall URL
    Now the MyCorp.Com domain is hosted externally to the company by a dedicated provider (we just login via a secure portal if we want to add for example and A record to the MyCorp.Com domain) the MyCorp.Com domain is completely separate from the MyDomain.local
    domain which is hosted on internal DNS Servers
    Question:
    without using split DNS can I, create a zone called New.MyCorp.Com on our internal AD integrated DNS Servers (to live along side the standard MyDomain.local) than add an A record to this zone say Host.New.MyCorp.Com
    So internal users can locate Host.New.MyCorp.Com without being directed out to the internet (for MyCorp.Com) but internal users will still be able to resolve SomeOtherHost.MyCorp.Com as they do now
    Thanks very much in advance
    AAnotherUser__
    AAnotherUser__

    Hi AAnotherUser_,
    Based on your description, the internal domain name is different from the external domain name, and the web server is hosted internally. And the goal is that the internal user can
    access the web server by using an URL which include the MyCorp.com.
    In this scenario, internet users access your domain name by connecting to the WAN IP address of your router. However, to make the internal users access the website, you would need
    to create the external domain name as a zone on your internal DNS server.
    After creating the DNS zone, right click the zone you created, choose New Host Record.
    Type in the hostname, such as ‘www’, and provide the internal private IP address of your internal web server.
    For more details, please refer to Ace’s blog below, the
    Scenario 2: Different Internal and External but you are hosting the webserver internally
    http://blogs.msmvps.com/acefekay/2009/09/03/split-zone-or-no-split-zone-can-t-access-internal-website-with-external-name/
    Best Regards,
    Tina

  • I have questions about DNS: Is this a DNS LOOP?

    Hi , everyone:
      I've read some text about the Domain Name System, And found something I can't understand:
      Many Text Say like this: 
      Suppose the resolver want to get the ip address of the domain: www.example.com, The DNS Query Process looks like
      1. The Resolver asks one or more of the ROOT-SERVERS
      2. The ROOT-SERVERS answer to the client that www.example.com is managed by the GTLD-SERVERS, and ROOT-SERVERS Gives some additional records to the Resolver about the ip address of those GTLD-SERVERS
      3. Resolver asks the GTLD-SERVERS about the domain: www.example.com
      4. The GTLD-SERVERS tell the Resolver to ask the IANA-SERVERS again , and again tell the Resolver about the ip address of the Name Server of IANA-SERVERS
      5. Now the Resolver go on asking the IANA-SERVERS about the domain: www.example.com , NOW the IANA-SERVERS answers the Resolver about the ip address of www.example.com
      My First Question is:
      Does Resolver Relay on the ADDITIONAL SECTION?
      Now Suppose I have two domains: example.com and example.org
      And i have registered my own NameServer: ns.example.com and ns.example.org
    Now I go to the registrar and change my DNS as follows:
    example.com  => ns.example.org
    example.org    => ns.example.com
    Then the resolver asks the www.example.com again, In my opinion , the process my looks like this:
    1. Resolver asks the ROOT-SERVERS of the domain www.example.com
    2. ROOT-SERVER answers that the Resolver should ask GTLD-SERVERS, and tell it the ip addresses of those GTLD-SERVERS
    3. Resolver now asks one or more of the GTLD-SERVERS ,
    4. The GTLD-SERVERS answers the Resolver that he should ask ns.example.org , but the GTLD-SERVERS does not know the ip address of ns.example.org , because the ORG domain is not managed by them.
      Then the Resolver must know the ip address of ns.example.org first if he want to resolve www.example.com
    5. Resolver asks the ROOT-SERVERS of the domain ns.example.org
    6. ROOT-SERVERS tell him to ask a0.org.afilias-nst.org. .... and give hime some additional records
    7. Resolver asks a0.org.afilias-nst.org
    8. a0.org.afilias-nst.org tell him to ask ns.example.com, because as HE Knows , it's the name server of example.org , But HE does not have any additional records about ns.example.com because the COM domain is managed by GTLD-SERVERS..
      Then the Resolver must know the ip address of ns.example.com first if he want to resolve ns.example.org ?
    9. Resolver asks the ROOT-SERVERS of the domain: ns.example.com
    10. ROOT-SERVERS tell hime to ask GTLD-SERVERS
    11. Resolver asks the GTLD-SERVERS about the domain: ns.example.com
    12. GTLD-SERVERS tell him to ask ns.example.org..
    LOOP...
    I don't know if my knowledge is right. My Second Question is:
    As I have register my own NameServer: ns.example.com , GTLD-SERVERS has the records of ns.example.com in it's database, But when I ask him ns.example.com , Why He tell me to ask ns.example.org ? Why not just answer me that he has the ip address of my NameServer?
    Hope some one explain it clearly. Thanks

    I'm in the same position, the store said they didn't know of any new release, so i bought my macbook pro to find out about mountain lion. I really hope that i'm not going to pay for the upgrade. New to apple, also last month bought my Ipad 3, really thought that Airplay would have been on my book pro, nope, waste of time.........need that update to use it. Back i the box then, get the windows 7 ultimate pro back out until then.

  • Big question about dns in solaris 10

    hi,
    in solaris 10 dns[client] is working fine even though the service is in disabled state.
    bash-3.00# svcs -a | grep dns
    disabled Oct_07 svc:/network/dns/server:default
    disabled 20:13:50 svc:/network/dns/client:default
    bash-3.00#
    still i can able to resolve the ip address.
    *my question is will this affect anything.. like autofs [net/<machine name>] concept.*
    Thanks.

    In short, no. Hostname resolution is guided by the /etc/nsswitch.conf file, and the /etc/resolv.conf file tells the resolver which DNS servers to contact.
    The network/dns/client service is actually part of the DNS server. If you start the DNS service with "svcadm enable network/dns/server", then the client service will start also (try it yourself).

  • Question about DNS programing

    hi, i am creating a DNS query message,
    but when i send out my package, in wirshark i capture that in my package the question is unknow
    my package carry a domain name like "www.sun.com"
    and send to one of the root dns using type a.
    but the question is that,
    i have to convert the "www.sun.com" into byte array
    what i did is "www.sun.com".byteValue,
    and directly put it into the question part of my dns query.
    seems this part causing the problem, i can not directly convert the string into byte,
    have to follow some rule
    Does anyone know how to do that?

    en.....becuase i want to wirte some code like getbyName does..hoho
    i find out finially
    03www03sun03com
    because
    length of www is three, so there is a "3" infornt

  • Question about Time-zone

    I'm in dilemma, whether i need to Re-schedule Reports after changing Time-zone in infoview using "My current time-zone is" option?
    Please suggest me.
    Appreciate your help.
    Regards,
    Parsa.

    Why would you need to reschedule?
    Report schedules are based on the Time Zone of the Web Server and not every individual user that schedules a report.

  • Another DNS Zone Question! :)

    I have several geographic sites all with their own leopard servers (ten or so). Each are open directory masters managing public ip subnets. We do have an external dns server and all of our servers have registered names that are part of the same domain....
    My question is this... when setting up dns on each server, do I need to create zones, or can I just make the dns forward to our external name server. I am worried that having more that one ns authoritative for the same domain will cause problems with our isp dns server? I have one server running just fine without zones... just forwarders ... and all is running smoothly, ical, wiki's, mcx, mobile accounts, etc...
    Looking forward to finding out whether having zones at other locations and authoritative dns servers is a bad thing or not.
    Thanks.

    As long as the external DNS server has all of the info you need, there's no need to set up duplicate zones on your servers; as you note, it could even cause problems if the info got out of sync. In fact, you don't even need to act as a forwarder, you could just turn off DNS service and configure all your computers (servers & clients) to use your ISP's DNS servers.
    In your situation, I see two reasons you might want to run DNS service: in case your internet link goes down (losing access to DNS tends to make it hard to find servers, even if they're on the same LAN), or if the public DNS servers don't have the reverse DNS (IP number -> domain name) entries you need. If you're worried about the first, you could set your servers as secondaries (aka slaves) for the relevant zones, in which case they'll download the zone files from the master and automatically keep in sync. If the second is an issue, you're probably best off bugging your ISP -- since the reverse records are tied to your IP numbers, and those're "owned by" the ISP, they're generally in charge of the reverse DNS no matter who's hosting your forward DNS zones.

  • Questions about patching a global zone with a zone defined via luugrape

    I've discovered that under Solaris 10 u7, luupgrade -t doesn't like seeing any zones defined when applying patches. If it sees a zone or zones defined it errors out.
    Well, I found a way to make it work. Basically you shutdown and detach the zones (or zones). I then delete the zone configuration. At this point, you would think luupgrade would stop complaining and just work. It doesn't. It will still fail at this point. The only way I could get it to work is in the global zone I had to do the following:
    mv /etc/zones /etc/zones-ORIG
    mv /zones /zones-ORIG <<< probably not needed but whatever ...
    lucreate -n S10u7zfsPATCHED -p rpool <<< So at this point both my active BE and the ABE both have effectively no zone configurationRan luupgrade and, poof, it works:
    luupgrade -t -n S10u7zfsPATCHED -O -t -s . ./patch_order
    Validating the contents of the media <.>.
    The media contains 138 software patches that can be added.
    Mounting the BE .
    zoneadm: global: could not get state: No such zone configured
    zoneadm: failed to get zone data
    Adding patches to the BE .
    Transition old-style patching.
    Checking installed patches...
    Patch 120900-04 has already been applied.
    See patchadd(1M) for instructions.
    WARNING: Skipping patch 120900-04Still I'm wondering why did I have to get so extreme to make this work ... after detaching and deleting the zone configuration why would luupgrade still complain about a zone which effectively no longer existed. I looked in /etc/zones and could find nothing related to my original zone. Where is luupgrade getting this almost "ghost" zone configuration information ?

    I've discovered that under Solaris 10 u7, luupgrade -t doesn't like seeing any zones defined when applying patches. If it sees a zone or zones defined it errors out.
    Well, I found a way to make it work. Basically you shutdown and detach the zones (or zones). I then delete the zone configuration. At this point, you would think luupgrade would stop complaining and just work. It doesn't. It will still fail at this point. The only way I could get it to work is in the global zone I had to do the following:
    mv /etc/zones /etc/zones-ORIG
    mv /zones /zones-ORIG <<< probably not needed but whatever ...
    lucreate -n S10u7zfsPATCHED -p rpool <<< So at this point both my active BE and the ABE both have effectively no zone configurationRan luupgrade and, poof, it works:
    luupgrade -t -n S10u7zfsPATCHED -O -t -s . ./patch_order
    Validating the contents of the media <.>.
    The media contains 138 software patches that can be added.
    Mounting the BE .
    zoneadm: global: could not get state: No such zone configured
    zoneadm: failed to get zone data
    Adding patches to the BE .
    Transition old-style patching.
    Checking installed patches...
    Patch 120900-04 has already been applied.
    See patchadd(1M) for instructions.
    WARNING: Skipping patch 120900-04Still I'm wondering why did I have to get so extreme to make this work ... after detaching and deleting the zone configuration why would luupgrade still complain about a zone which effectively no longer existed. I looked in /etc/zones and could find nothing related to my original zone. Where is luupgrade getting this almost "ghost" zone configuration information ?

  • DNS Zone for Mail

    Following on from my first question which the nice Mr Camelot answered for me
    I have a server which has a DNS zone of companyname.net.
    Internal mail has been setup using Mail Exchanger set to mail.companyname.net.
    I have checked changeip -checkhostname and there are no issues.
    The public DNS records have been set to make mail.companyname.com the MX record, and an A record for mail.companyname.com has been setup pointing to the static IP.
    As I see it I have two options I can move forward with (3 actually if I wipe the server and start again )
    1. Try and rename the DNS zone to companyname.com and then reset the mail settings to match.
    2. Setup a CNAME on the server internal DNS to point mail.companyname.com to mail.companyname.net and leave the mail settings as they are.
    I am in the process of installing SL Server on a VM to test the first option to see if it is viable, but my question is are there any options I have missed, and what would you suggest I do in this circumstance?
    TIA.

    So you have a zone for a host mail.example.net within your network, and valid external DNS services with an A record and MX at mail.example.com within your external DNS services, and you're wondering about rebuilding this all?
    It'd be far easier to just enable mail.companyname.com as a virtual host within the mail server configuration.
    Personally, I'd look to remove the use of the internal example.net MX for the mail server, and use the external path.  You can set up the MX for the internal network to resolve to mail.example.com, for instance.  With that (and with a firewall that knows how to reflect" outbound traffic for the WAN IP address, or - somewhat uglier - adding a DNS A record for the mail.example.com within your internal zone), the configuration is the same for all hosts, whether internal desktops or mobile devices.
    Note that the companyname.com and companyname.net domains are real and registered domains.   The domains example.com, example.net and example.org are RFC-reserved for documentation and for these sorts of postings.

  • Changing DNS zone names after the fact

    Over 3 months ago we started setting up our server network. After discussions with administration it was determined (at the time) that we would use and register a domain name with a .net extension. So we set up a primary server with this extension and had it registered with our ISP. We subsequently added 7 other servers to the mix and as they were installed they grabbed their names from the DNS zone we had setup *.net in our DNS zone in our primary nameserver system. It was all well the tests worked we had it all going and are moving our 130 machines (including about 60 users) over next few months (and have moved about 10 users and other machines so far.
    My question is this. Back in beginning a *.org was the other option but we had problems with it and our ISP (could have been some error on our part) so we went with *.net for our domain and got that registered. Now all of a sudden as our management is wanting to move the organizational website (we are not doing that) to another service that service is tying to convince them we should have not used *.net but *.org.
    The person in charge of us is strongly asking if we can go back and setup with *.org but as I understand it I cannot go in and delete my *.net DNS zone and then rename all the servers with a .org extension but as we understand it from lynda.com and other sources it appears that we probably would have to go back and reset all the machines back up by reinstalling them after I changed the first primary nameserver. And then register the new name and wait for it to propagate?
    Are we wrong? Can we just go in and turn off the DNS in server admin and then change the zone name(s) to *.org and the host names of each server from *.net to *.org and restart DNS and find all to be well? As much as we can tell it appears that we would have to restart from scratch as all the documents and lynda.com imply we should have had our final domain name set and registered before we started to install and setup the primary and secondary servers?
    I see some examples where it is said to make such changes something needs to be done with ipconfig and not the GUI in server admin. But again I am not sure that this will work with our primary nameserver and the 7 servers under it?
    Any feedback or help about this would be appreciated. It is our preference to stay with *.net and not have to do major work as we are starting user and network migration to the new servers and hate to have have such a major setback just because one person and the web design service they want to use does not like *.net. to us it appears the horse is long out of the barn and when this was approved last fall we have gone to far to easily go back. But if it is easier to go back than we think then we are willing to try to change.
    Thanks
    russ

    foilpan wrote:
    first, what are these servers doing? are they all web servers, OD masters, simple file servers? depending on their roles, changing their names can be more or less of a problem.
    The first server we set (the name server) does incoming mail, is the DNS server for local net and such. Then there is the outgoing mail server (one of 7) a web server (another of 7) and then the rest are mostly file servers for our setup.
    second, work out that political stuff before making any changes. if everything's working fine as is, make a strong case for leaving things alone. if possible, estimate support costs for changing everything and troubleshooting, then see if management can justify it.
    Sort of my feeling. We thought we had it all worked out but then they decided to abandon the old web site (managed by someone else but associated with the old mail/network somewhat) and have a new Web design company do it and this company complained about us having chose a .net for what reason I do not know so the administrator somehow was persuaded and had no idea of the can of worms she had opened up by changing her mind. If it is too much of a hassle and it appears so in terms of delays to move rest of organization over then I hope we can convince them.
    are all these servers public facing or behind a firewall?
    They are behind a firewall on a high speed cable modem ISP service (firewall is local ASTARO machine).
    also, why not setup another dns zone for .org and point to the same hosts? that would allow you to use either .net or .org, for the most part. again, that depends on what these servers are doing.
    We suggested that but the administrator did not like having two names we have a lot of users (volunteers and such) who are not really too savvy (the nature of free and partime help I guess) and she feels they will be confused by two extensions for network, mail and web. It sure does not bother me (I have about 8 email addresses for example now .
    post more details without the political background and what the end result should be, and we'll be able to add more here.
    Ok basically we want to know with the following:
    1) main nameserver (the first server that provides the DNS zone for local *.net and serves the incoming mail)
    2) A second outgoing SMTP server to split load and do outgoing work...
    3) A third webserver doing all the web services (blog, wicki, and such)
    4) 4 file servers that are going to provide a local file server for our 4 main departments
    5) A final test server we are testing other things with-- so total of 8 servers.
    6) 8 Users out of 60 now on the network with their personal desktops or laptop machines, and a few printers and other devices all on new network.
    There are a total of 130 macs and pc's in our organization that will all eventually be on this new network with the above.
    Basically we are wondering if the main (first) DNS and incoming mail sever, and the 7 other (web, SMTP out, and file server machines) will have to be set back up from reinstall if we are to make the change from the *.net zone we have now to a *.org one?
    Any other details that would be of help?
    Thanks
    Russ
    2) second

  • How to setup multiple DNS zones in a single domain

    We have a small charter school running a Mac Open Directory network on a single subnet with a single registered FQDN for its internal domain. We are about to open a second school within a wing of the same building which will also be on a Mac Open Directory domain, but since it is legally a separate school (just administered by the same staff) it needs to be on it's own subnet and have its own LDAP directory.
    Is there a way to program DNS between the two schools so that DNS traffic can be routed between them without breaking the DNS and Open Directory/Kerberos realms of either? Both schools will share the same internal domain name. Is it as simple as creating two primary DNS zones on each other's nameservers, both using the same domain name but each having its own designated nameserver for that particular subnet?
    For instance, the existing school is running DNS on server1.example.com within the 10.39.54.0/23 subnet. The second school will be running DNS on server2.example.com within the 10.39.56.0/23 subnet. Would I then simply create two primary zones within each subnet, one referring to its own with itself as the nameserver and one within the neighbor subnet referencing that subnet's server as the designated nameserver.
    Or would I do this with each schools DNS servers searching through its own subnet as its primary zone with the neighbor zone being added as a secondary zone?
    Thanks!

    You have two options.
    Use a DNS server with a single internal domain example.com and have (as you said) server1.example.com
    If the two subnets are on separate networks either via a router or VLAN, then you could run a separate DHCP server on each and advertise the appropriate DNS server for that subnet.
    Otherwise you could have a single DNS server and either single DHCP advertising that single DNS server and have both server1 and server2 in the single DNS zone, or a DHCP server in each subnet but still pointing to the same single DNS server.
    Each of these two servers would be an Open Directory Master
    Note: in DNS terminology a DNS 'zone' is the same thing as a Domain Name.
    The second option which if you want to keep the two 'schools' completely separate is to do the following
    Use a DNS server per subnet
    Use a DHCP server per subnet
    Use a different domain name per school e.g. school1.com and school2.com
    Create a server record on each as appropriate e.g. server1.school1.com and server2.school2.com
    You cannot have a single DNS server have two identical zones e.g. example.com and example.com as they are of course the same thing.
    If the two schools will merge officially at some point it might be better to use the same domain name, if they are going to fully split then definiately it is going to be better to use two different domain names.

  • How to change DNS zone, or how to host email outside of BC

    I have BC from Creative Cloud Suite, so I have the cheapest possible plan for BC.  Meaning I don't get any email hosting.  So I was looking to host email outside of BC.  I looked it up on google to see if it could be done (I'm really new with all this hosting stuff!), and I found that if you change the DNS zone and MX records to certain things you could.  I had to delete the MX record I had set up prior to finding out BC won't host my email, and I went to set up an Advance DNS Records.. But I'm not sure what to do! There's a lot of information I'm not sure about, and I don't know what goes where!
    I'd like to have godaddy host my email, and what I found is that I need to change my DNS zone to: mailstore1.secureserver.net and change MX records to 0 smtp.secureserver.net 10 mailstore1.secureserver.net
    I may end up finding somewhere else to host email at a later point, but right now I just want to try to figure out how to do this so I'll be able to in the future.  Any and all help is appreciated! Thank you

    Hi
    All you need to do is go to Admin > Site Settings > Site Domains and activate your new domain. You’ll have to enter an MX record for e-mail to be setup, which will be provided by godaddy.
    Here’s a similar article on the same topic:
    http://forums.adobe.com/message/4997019#4997019
    Let me know how it goes

  • Questions about user-defined functions

    Hello all,
    I've got some questions about user-defined function in a message mapping:
    1) How can I get the current date/time in format yyyy-mm-dd hh:mm:ss ? What is the java code for this?
    2) I want to use the StreamTransformation constant TIME_SENT, only this is not in the right time-zone.
    It is GMT and it should be CET (1 hour difference). How can I convert this in Java?
    Can somebody help me with this?
    Thanks in advance.
    Kind regards,
    Marco van Iersel

    Hi Marco,
    If the date format is fixed as you have mentioned,please use this:
                                    String test = "2009-03-27 23:15:30";
              String test1 = test.substring(11,13);
              if(!test1.equals("23"))
              int a = Integer.parseInt(test1);
              int b = a+1;
              System.out.println("b"+b);
              String c = Integer.toString(b);
                                    test = test.substring(0,10)+" " + c + test.substring(13,19);
                                    return test;
              if(test1.equals("23"))
              test = test.substring(0,10)+ " 00" + test.substring(13,19);
              return test;
                                    else return "";
    Kindly let me know if this works.
    Thanks.
    Regards.
    Shweta

Maybe you are looking for