Tiger Server DNS and OpenDNS

Setup:
Tiger Server 10.4.9, OD Master, DNS on
I would like to use OpenDNS as my forwarders but I'm not sure of the proper syntax when editing the etc/named.conf file.
The OpenDNS IPs are:
208.67.222.222
208.67.220.220
Currently, my client machines have the IP of my Tiger Server as their DNS server. I'm hoping that by adding forwarding to the named.conf file, my client machines would be able to resolve internal DNS AND take advantage of OpenDNS for everything else.
I also imagine I would have to turn Zone Transfer and Recursion OFF in Server Admin?
Many thanks.

I found it by doing a more thourough search. For anyone interested here it is:
forwarders {
208.67.222.222;
208.67.220.220;
forward first;
This should come right after this line in your /etc/named.conf file:
// query-source address * port 53;
In Server Admin, in the DNS section:
Zone transfer should be OFF
Recursion should be ON
On your client computers, all you need to put in (in the DNS section of the Network preferences) is the IP of your Tiger Server machine.
Hope that helps anyone else.

Similar Messages

  • Will "Tiger Server - Xserve Install DVD" install on non-Xserve Mac ?

    Hi All...
    I had four G5 Xserves (now sold) but I still hold and own the Tiger Server DVD and Licences. I am buying an old Mac Mini that had Tiger originally installed, but has been upgraded to Leopard... my question is will my old DVD "Tiger Server - Xserve Install DVD" let me install on a mac OTHER THAN an Xserve... I am suspicious as the Licence starts off with "XSVR-...." which makes me think it may be a special install DVD configured for the Xserve only... ???
    Appreciate a confirmation either way..
    Thnx
    MOKA

    Thanks very much for your comments... It does not have any other comments on it other than Version 10.4.3 and Mac OS X Server Xserve Install DVD.
    I think you are likely correct and I will give it a try
    Thnx again !!

  • Strange behaviour of OS X Server DNS with IPv6 reverse zones

    I am running a full IPv4 / IPv6 dual stack setup across several machiens including a server (OS X 10.9.1 / OS X Server 3.0.2). I also have IPv6 Internet access via TunnelBroker and have a /64 prefix assigned to me. All my systems have valid and correct IPv6 addresses (not temporary ones) from the range denoted by that prefix.
    I have setup IPv4 and IPv6 addresses for all my systems in OS X Server DNS and that works fine. However, when I add an IPv6 address for a system, the DNS server (or maybe the server GUI) insists on creating a reverse zone for the /127 version of the address. This means I pretty much have a separate reverse zone for every system, which seems crazy to me. it is especially annoying as I have another DNS server where all my zones are defined as slave zoes (for availability reasons) and thsi makes the process of addign a new IPv6 host somewhat tedious. I tried pre-creating a properly named reverse zone for the /64 prefix but the DNS server would not use that and still persists in creating these strange zones.
    Here is a (fictitous example)...
    My /64 prefix is 2001:fd0:f19:2ab::/64
    I have a system with an address of 2001:fd0:f19:2ab:7e6d:62ff:fe8a:a84c
    I add this to OS X Server DNS and it created the reverse DNS zone:
    4.8.a.a.8.e.f.f.f.2.6.d.6.e.7.b.a.2.0.9.1.f.0.0.d.f.0.1.0.0.2.ip6.arpa
    whereas I would expect it to instead add it to the zone
    b.a.2.0.9.1.f.0.0.d.f.0.1.0.0.2.ip6.arpa
    if that zone already exists.
    Has anyone else noticed this? Or do you have it working as one might expect?

    Chris..
    I, too, have the same problem.  I take issue with much of the OS X "Server" after it has been so completely dummed down that it is virtually useless for anyone that would actually like to utilize it as an actual, as the name implies, "SERVER."  I won't get into all of the details of everything that drives me crazy with Apple's decisions here but, suffice it to say, I am EXTREMELY DISAPPOINTED with Apple more than ever.  They should, at a minimum, offer a full-fledged server like they used to have, for an additional price, for people that need more than a nice looking interface and a worthless box.
    That being said, the DNS server, like the rest of the OS X Mavericks Server, is dummed down to the point of allowing very little customization.  Short of using the command line, which I have decided to do (I scrapped the OS X server all together, and just set up BIND, openLDAP, DHCP, Quagga, etc. from the CLI just like I do with all of my Linux servers), there is not much you can do to get the correct prefixes to show up in IPv6 reverse zones.  The reason is that when you enter the forward record, the interface does not give an option to enter the prefix.  So, it seems that for EACH AND EVERY v6 entry (AAAA record) you have (or at least every 10 entries), you will get a separate reverse zone.
    To be completely honest, I don't even know why they included IPv6 zones in this implementation because it is totally out of compliance with the RFCs and, obviously, will not provide proper and correct reverse lookups.  How could it? As you pointed out above, with a /64 prefix, you're getting a 31 digit long reverse zone (which, btw, is a /124)...***???  I've never heard of such a thing.  There should be 16 digits in a /64, 12 in a /48, 8 in /32 and so on.
    I don't think it is anything to do with your using a tunnel broker -- all of our systems are native IPv6 and all reverse queries to the Mac Server fail. 
    I can tell you how to use the CLI to manually enter the zones with the serveradmin tool, if you like, but my advice is to just move to a full fledged BIND implementation .... and, if you want some type of interface other than the console, use something like Webmin which has a GREAT DNS zone interface...and it also keeps up with the RFC compliance.
    Just message me back if you'd like the shell commands.  I hate to say this, it literally pains me, but I administer a ton of servers (physical and virtualized)... roughly 1000 +- to be exact...and WINDOWS Server has a DNS server that is so much further ahead and ADVANCED than Mac, it is disgusting.  In fact, we are running 12 Win Server 2012R2 Active Directory Domain Servers, each running synchronized DNS records and even with over 250,000 DNS records, it works like a champ.  Still, our primary and fail-safe DNS servers are all BIND v9.  Like I said, it is awful to say that about Mac, but dude, they need to wake up and either get back to the real-deal systems or just get out of the advanced product arena all together.  (one exception...my new MacPRO is AWESOME and the most advanced piece of computing equipment money can buy for the price...so kudos there)
    Sorry about the rant, but when i read your post, I was reminded how frustrated I am at all of this nonsense.
    Take care...and good luck.

  • Mac OS X to Mac OS X Server Archive and Install

    I bought the Tiger Server Box and need to install it onto an iMac to serve as a non-mission critical server, but there is some data on it that I would like to avoid having to backup. Can I perform an archive and install installation of Mac OS X Server over Mac OS X, while preserving all of my data and settings?

    You don't need to do an archive install. You can install OSX server right on top of an existing OSX Install.
    It is documented on the server install disk what to do if installing on an existing osx installation.
    I installed Panther Server some time ago onto an existing Panther OS. I did not need to boot from the server install disk. I just ran an installer package.
    I am sorry I can't be more specific but its been over a year since I did a server install.

  • Sync Tiger Server (10.4) mail with Lion (10.7) mail

    I made a clone of my Tiger Server drive and managed to upgrade it to Lion Server. While I was upgrading to Lion Server the Tiger server continued to host email. I have everything working on the Lion Server upgrade. Open Directory is functioning and users are able to log into their accounts and access email received up to the date I cloned the drive. However, email is still being hosted on the Tiger Server. Is there a way to sync email from Tiger Server to Lion Server?
    Thanks!

    Thanks Brian,
    It's a 2 x 2.66 GHz Dual-Core Intel Xeon Mac Pro.
    I do have a spare partition on the drive, would it be possible to install 10.6.8 on that parition, and then upgrade to 10.8 leaving my original Tiger Server intact (temporarily?) I've also heard you can aquire 10.8 on a thumb drive at the Apple Store, if I went went that route could I skip the 10.6.8 install?
    I don't mind setting up my services again, no real big need to migrate existing user profiles, there's only 1/2 dozen or so. It would be nice to set it all up and then test it out, and be able to revert back to Tiger if I can't get things configured easily on the new server or encounter surprises. 

  • Tiger Server or regular Tiger version?

    hello! What's the difference between Tiger server edition and the regular Tiger? Thanks

    The server edition is intended for running a central server to which a large network of computers have access: normally this would be done in a business or educational setting. It's not necessary for a home network.

  • Time Capsule blinks yellow,when I go to airport utility to set up, it Says This apple wi-fi bse station doesn't have any DNS server addresses and might have trouble connecting to internet.  My internet works, but I can't back up anything. What do I do??

    Worked fine for about a couple of weeks after my son -law installed the time capsule.  I can access the Internet both from my wife's I phone and from my desktop.  I think that I need to get the DNS server numbers and put them in the two blanks; but where do I get them?  Thanks, Jim

    If the modem is also a router, either use the modem in bridge and run pppoe client on the TC.. that is assuming ADSL or similar eg vdsl. If it is cable service.. and the modem is a router, then bridge the TC.. go to internet page and select connect by ethernet and below that set connection sharing to bridge.
    Please tell us more about the modem if the above gives you issues.

  • DNS Issues - Can ping server name and IPs but not FQDNs.

    Hi All, 
    Hopefully some one can help me here, I am having an issue where one of my domain attached servers cannot ping any FQDNs in the environment but it can ping the host names and the IPs and look up the host names from a reverse look up. 
    We have done the following troubleshooting:
    Flushed and registered DNS cache.
    Restarted the DNS client and net logon services on the effected server
    Preformed standard checks and commands such as:
    Checked the event logs and found there were warnings for DNS registration.
    Compared the DNS settings in the network adapters across the rest of the servers in the environment and found that they were all the same. DNS Suffixes are added in the correct order and are set to register.
    Pinging FQDNs which is not giving any results.
    Tracert FQDNs which is also not giving any results.
    Nslookup which is querying the DNS server directly and giving results as expected
    Ran the command which reported successful: dcdiag /test:registerindns /dnsdomain:sub.domain.net /v
    Checked and updated the permissions on DNS for the affected server to give the server full control of its own DNS entry. 
    Replaced the DNS Client service DLL with one from a server that is working as expected. 
    Also worth noting is that the affected server (as well as every other server in the environment) has 2 NICs, one that communicates with DNS and AD and the other does not have any DNS IPs set. 
    Not this is not the first time this happened, a reboot fixed the issue before but it seems to be a reoccurring problem now. 
    If any one can shed some light on this issue I would be grateful.
    Regards,
    Steve. 

    Hi Steve,
    First, we should confirm if this issue is caused by DNS.
    When you ping the FQDN, does the server show the correct corresponding IP address?
    If no, there should be some error messages. If it is possible, please post the screenshot of this issue.
    To check the process about how does server resolve the FQDN, please follow the steps below:
    clear local DNS cache with command ipconfig /flushdns
    perform the network capture
    ping the specified FQDN
    Check the DNS traffic
    To download Network Monitor, please click the link below:
    http://www.microsoft.com/en-hk/download/details.aspx?id=4865
    Besides, have you tried to update the NIC driver to the latest version?
    Best Regards.
    Steven Lee Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

  • Mac mini server networking and DNS setup help

    Thanks in advance to anyone who can help me with this. I'm working at a small business where I'm the only guy with any IT experience at all, but I'm new to Macs and OS X (<1 year) and being a server admin so please bear with me.
    We just bought a Mac mini server as we are expanding from a bunch of workstations and Google Docs. I've just gone through the installation process, but nothing else is on the server, no user data at all, so if the answer is to reinstall from scratch, I can do it.
    We'd like the mini to be a file server, print server as well as the gateway for the internet. I realize we could stick to our router and have the server as another node in the network, but we also got a Time Capsule for backing up the server and will locate it in another room to be another wireless access point there.
    When going through Server Assistant, I didn't really know what to name the machine so I used corp-Server.local for the Current Hostname and corpserver.private for the DNS Hostname (though i actually use a 3-letter company acronym instead of "corp").
    However, i realized after setup we'd want to access the server externally by name, so I changed the DNS hostname to server.companyname.com in the Zones tab of the DNS section of Server Admin (edited primary zone name, changed Nameservers entry for both primary and reverse zone).
    I don't know what else I need to do though because there are loads of instances where corpserver.private still shows up, like in the Open Directory section of Server Admin (which btw always hangs when I open it) and the Contact Info of users (eg. user email is [email protected]). I also had trouble earlier using Server Preferences and Server Admin either not connecting or not recognizing my login, but that seems to have abated.
    I guess my problem is, where else do I change the DNS hostname? Or do I have to change the DNS hostname back to corpserver.private (in Server Admin)? That way, I think at least everything will be consistent, but would I be able to still configure it somehow so that externally, we could access the server by the server.companyname.com URL?
    Also, can the mini be a wireless router for the office? As mentioned before, we want to cut the existing wireless router out and use the mini instead (and use the Time Capsule as a wireless bridge).

    So the ISP<->router connection can have a dynamic IP address, but the router<->server one should be static? I guess that means I have to set the IP address in the router. I hope I can get access to it. I don't suppose it matters which one I set first?
    An IP router does not assign addresses.
    A DHCP server does assign IP addresses upon receipt of a DHCP request from a client.
    Some routers (and many firewall routers) do include a DHCP server.
    A box with a static IP address does not need to send a DHCP request; it has a static address.
    You'll need to ensure that the IP address pool within the DHCP server does not overlap the addresses that are manually assigned to your local hosts; the static IP addresses on your LAN.
    [Here is an overview of the pieces involved here, and some of the typical terminology|http://labs.hoffmanlabs.com/node/275].
    I hate to belabour the point, but I just want to clarify: in my setup where ISP<->router<->server<->clients, where the server is the only machine connected to the router, which one should be the local DNS server? The server, right? So if the DNS server is turned on in the router, I should turn it off? Or do I need both (ie. router for its LAN (to server), and server for its LAN (to clients))?
    So to confirm, the configuration includes (probably) a modem, a router (firewall) and a router (Mac), and then the rest of the (local) show? That is not the simplest configuration, and it's Particularly given that Mac boxes make expensive and slow routers.
    The usual configuration is ISP>firewall>LAN and the LAN is usually built from WiFi, wired connections and switches. Within one subnet (which is typical) any host inside your firewall is connected on the LAN, and can communicate (directly) with any other LAN client. The firewall is configured as the gateway; that's the default route for outbound connections.
    One more thing that's bugging me: I still don't understand why I couldn't connect to the internet when I plugged in the Ethernet cable from server to router. Even if I was using DHCP to get a dynamically allocated IP, shouldn't it still have worked? I'm worried that I'm going to set up everything as it should be but the connection still won't work.
    That's likely because you're trying to use the Mac as a router, and that takes specific configuration steps. It's easier to have ISP>firewall>LAN, and have the Mac OS X Server box and the rest of the stuff as peers on your LAN. If you really want to use the Mac as an IP router, look around for setting up static routes on Mac; there are postings around for that.
    If your data is more valuable and your security preferences and requirements are higher, then you may want a firewall with a DMZ, and put your web-facing boxes over in the DMZ. If you're serving stuff to the web or a mail server or such, it's possible to get breached, and a breach means folks can potentially get further into your LAN. With a DMZ, they're somewhat more isolated from your LAN.

  • "Back to my Mac isn't working properly because your DNS server isn't responding. Contact your ISP for an alternate DNS server address, and enter it in Network Preferences".

    Hi, i am trying to setup back to my mac at home but I get the error "Back to my Mac isn't working properly because your DNS server isn't responding. Contact your ISP for an alternate DNS server address, and enter it in Network Preferences".
    There is no documentation on how to solve this anywhere.
    I have an Arris router set to bridged mode which is connected to a 5th generation airport extreme. I have tried using the google dns servers instead of the one assigned by the cable company in the AE but I still get the same error.
    Any help would be much appreciated
    Kenneth

    New to BTMM, I got stung today with the silly DNS problem message. Solution:
    1) Flush DNS cache with:
    dscacheutil -flushcache;sudo killall -HUP mDNSResponder
    2)System preferences > iCloud > untick BTMM then tick it again. The warning should have disappeared.
    Edit #1
    Apologies for the noise. The warning has come back
    Edit #2
    Just found out that BTMM is not compatible with double NAT. That's not helpful.
    http://support.apple.com/kb/TS1208

  • Tiger Server and Snow Leopard Server

    I have 2 servers. 1 is an old tiger server and the other a snow leopard. When I try to connect to either in the workgroup app. I am getting and error 14105 line 2334 error and the app unexpectedly quits. I want to be able to have a share point on the old server without users having to log in again. I would assume you could use LDAP for users but I am relatively new the MAC OSX servers. Thanks

    No progress yet. Have tried a lot of things with preferences on the server. I have confirmed with another snow leopard machine that this is not related to the machine in any way. I have not yet had a chance to test it on another Tiger server but given the fact that you are seeing it as well I would say there is a problem with the two operating systems cooperating.
    As I said, I do have a temporary workaround. If you do a save as with the document, choose to overrite the original it works and then lets you continue to work on that file and save for that session. After you close the file and reopen the problem returns but at least for that session you are fine.

  • Tiger Server and Leopard workstatiger and Lepard workstons - Print Services

    Good morning. We are running Tiger server with a 'mixed economy' of Tiger and Leopard workstations. I am finding that Workgroup Manager does not manage the print queues for users at Leopard workstations. They can see and use all the printer queues managed by Print Services. The Tiger machines are fine i.e. they just present the print queues that have been allocated by Workgroup Manager.
    I assume that this is an anomaly due to Tiger Server not being 100% compatible with Leopard. But has anyone else experience of this and or a possible solution please?
    Brian Bowell
    ICT Support
    Berkley School.

    Hi Brian
    Not with the Print Service specifically but I have noticed similar 'anomalies' elsewhere. For an OD environment nothing specific as such. Tiger MCX do not seem to 'take' in the same way for Leopard Clients as they do for Tiger Clients.
    No shattering insight so sorry for that. Of course - you've guessed it - if its all Leopard there are no problems.
    Tony

  • Leopard Server Assistant and DNS Name

    I am trying to setup Leopard Server in my home...
    Server assistant launches I fill in the information and everything is fine... except I do not know what to put in the Server DNS name box. If I leave as is the server tools do not start because they cannot resolve the machine name.
    In short what is going on...
    1. How do you change the machine DNS name after server assistant has finished running?
    2. What should I put in the DNS box?
    MACServer.local? or MACSERVER
    3. If I move to Dynamic DNS how do I change this later without having to re-install.
    I have to admit that setting the server up, installing disks was easy but the DNS issue seems to be a real stumbling block for setting up a home server.
    What am I doing wrong?
    Message was edited by: Peter Jarvis
    Message was edited by: Peter Jarvis

    Tony,
    Thanks for the response.
    My concern is that a normal home user will not be able to setup MAC Server 10.5 very easily without knowledge of DNS. (I will walk through a setup later on in the mail)
    My point is that the average user will not be able to setup MAC Server. They will have difficulty filling out the setup wizard correctly - for this reason I cannot recommend it to a rookie. What is needed is a really simple setup scenario script that can be given to user so they can setup a MAC server in the home to support file sharing, intranet web browsing and time machine backups and central storage for users.
    Don't get me wrong a MAC admin will find the changes in 10.5 a significant and fine improvement over past mac server setups and a leap frog over the Windows and Linux setup experience. Don't let anyone persuade you that Microsoft Home Server is a easy either. (Actually corrupts data with certain apps) - great testing Microsoft
    Back to good software...
    MAC Server Setup example: (Newbie the new IT for the household)
    Prior to setting up the server Newbie will need to define his system setup...
    i.e.
    Server Name [email protected]
    IP Address: 192.168.0.100
    Router: 192.168.0.1
    Is the machine going to be a gateway or behind a firewall?
    Will it distribute IP addresses for the home network etc?
    These points are important as the DHCP and DNS go hand in hand. If the router is acting as a DNS relay and handing out IP addresses this may interfere with setting up the server to be primary DNS provider in the home.
    Walkthrough 1: Scenario:
    Setup the server to be a simple server with only file sharing, web server and time machine.
    When asked Newbie enters:
    Domain name: pkjserv.technophobic.com
    Server Name:192.168.0.100 (DHCP) or manual
    Nebie configures the server...
    after setup the first thing that will happen is that Server Preferences will launch it will populate with the above server data...
    Problem: Newbie trys to use server preferences and types in his password and fails to get access...
    Why... because Server preferences expects "pkjserv.technophobic.com" to resolve but DNS is not setup yet...
    OK so Newbie needs to setup DNS...
    Newbie selects Applications/Server/Server Admin.app
    (Newbie uses Magic to find Server Admin)
    First prompt "Are you sure you want to use Server Admin?"
    Newbie selects "Use Server Admin"
    (Newbie uses Magic to know he has to do this)
    Connect to server via IP address 168.192.0.100
    Select DNS add click to box...
    Expand 192.168.0.100 (our server)
    Select DNS
    Select zones...
    Add primary zone / Select example.com
    Change Primary zone to "technophobic.com."
    Select "ns" and Change Nameserver to "pkjserv"
    Under primary domain select machine change machine name to "pkjserv"
    Select IP Addresses and change to 192.168.0.100
    Click "save"
    Newbie should have the following setup displayed:
    Name Type Value
    technophobic.com Primary Zone -
    pkjserv Machine 192.168.0.100
    0.168.192.in-addr.arpa Reverse Zone -
    192.168.0.100 Reverse Mapping pkjserv.technophobic.com
    ------- Start DNS...
    The problem here is that DNS is working but Newbies IP setup is still not referencing the DNS server so newbie will have to add it to the network settings.
    Preferences / Network / advanced / DNS
    once they have done this Newbie should be able to launch your browser and type "pkjserv.technophobic.com" and have it resolve to the web browser on the machine...
    in short - this is difficult... hence my proposal that Apple need to create a simple setup scenario scripted document (fill in blanks) so a user can setup a MAC server in the home. Current docs do not allows an average user to install MAC OSX Server - I want a simple MAC Server that anyone can install...
    Pete
    Message was edited by: Peter Jarvis

  • Tiger server, Snow Leopard Client and Illustrator CS4

    We have a strange problem happening with the one Snow Leopard client we have accessing our Tiger server. In certain directories (not in all) if the user opens an Illustrator CS4 file, makes changes and goes to save the file they get the message that the file is either locked or in use by another user (it is not). This does not happen with any other kind of file in that same directory. The server is connect to AD so the user accounts come from the AD but on this machine we have the same problem regardless of the user account used to mount the server volume. It also doesn't matter if I use a local account on the server to mount instead of AD. I have the same problem if I connect via SMB instead of AFP. Other machines (Leopard) can work on these files with no problems.
    A couple of other bits of information which might be useful. If the user opens the file, does a save as to the same name and same folder and replaces the original they can work on the file and save it with no problems. As soon as they close the file and reopen it they have the problem again. Also, if they run into the problem, close all programs on the computer and try to unmount the server volume they get the message that the volume is in use and cannot be ejected. I have checked and there are no invisible files being created in the directory where this file resides.
    What is strange is that the problem does not happen in all directories although when it happens it is repeatable in that directory. Happens every time. I have tried changing the name of the folder to something simple and it still happens.
    Any suggestions on where to go with this problem??

    No progress yet. Have tried a lot of things with preferences on the server. I have confirmed with another snow leopard machine that this is not related to the machine in any way. I have not yet had a chance to test it on another Tiger server but given the fact that you are seeing it as well I would say there is a problem with the two operating systems cooperating.
    As I said, I do have a temporary workaround. If you do a save as with the document, choose to overrite the original it works and then lets you continue to work on that file and save for that session. After you close the file and reopen the problem returns but at least for that session you are fine.

  • Using Mac Mini server, DNS, static IP, and external domain name

    Greetings!
    I need to know the direction to take in order to use my domain name for the great features offered in the mac mini server, while having local and public access to my server with security.
    I am trying to do the following on my new mac mini server:
    -Set up DNS (myserver.private)
    I have a static IP I want to use for all this with my ISP
    -ftp access
    -ichat ([email protected])
    -email ([email protected])
    -ical etc. ([email protected])
    -my work website(mydomain.com) with public access!
    -host websites(other domains)
    I need to know the direction to take in order to use my domain name for these features. I have a domain name with godaddy, and I am happy with keeping it with them, however, how to I make my external domain name work on my private server with public access is the question?
    Thank you,
    Daniel G

    [Read this|http://labs.hoffmanlabs.com/node/1436] as a start; you're basically going to decide if you want to use NAT or not; if you have enough public static IP addresses to avoid the disaster that's NAT. If you want to use NAT (and few reasonable folks want to, but sometimes we have to), then you get to run your own DNS services internally, and establish public DNS and power-forwarding at a (preferably server-grade) firewall. With NAT, you end up with split DNS, and that's covered in the cited document.
    ps: it's easier to [use sftp|http://labs.hoffmanlabs.com/node/942]; while that shares three letters with ftp, it avoids most of the problems of ftp.

Maybe you are looking for