Basically since this is openbsd, my last obsd box came with chrooted
'named' already present on the machine.
I edited the config files named.conf, dropped in a 'zone file' for
mydomain.com, with the proper syntax, serial number (today's date with a
01 as: 2007060601), and restarted named/bind.
-important because named/bind only parses the new changes in the config
after a restart -maybe i'm wrong here but it's a good practice to get in
the habit of [assuring daemons re-read config files after changes].
I was then able to use the 'dig' command on the server, as well as
various linux, unix clients to verify dns was propagating, and with the
intended results. Boo ya, there's my web server. And there's my mail.
wahoo.
It's a 5 minute task for a seasoned individual, but sort of a day-by-day
learning experience for a beginner to graduate to 'knowing it cold' e.g.
troubleshooting routers, loadbalancers, email, and dns all at once.
I am glad I chose Openbsd to learn all about making DNS servers because
for one, this project is very modular, it doesn't try to do too much or
be too many things, and secondly, at it's core, it's a really nice
networking OS. Thirdly, it's 'secure-by-default', which in your case
you are in a win-win situation because 'chrooted bind' comes already
installed and ready for you to configure and deploy.
I left out some technical detail in this response to give you an
overview. You edit a few files and restart the daemon, do some dig
commands, and see if you can reach your intended target servers (maybe
an apache server or something on another IP). Maybe you also remove
some difficulties by making sure your firewalled environment (work or
home), as well as your "nat" or "routing" is in order. Don't want too
many of those outside factors impacting your learning experience by way
of mystery, rather by intent or controlled circumstance.
That said, there at hundreds of brilliant minds who peruse this list
over a given week, -surely one of them can give you a command by command
sequence, -perhaps i'll bust out a 4.1 box and send you my command
history, I could use a 4th dns server around here. I forget if obsd
does 64-bit/smp/amd, time to go visit www.openbsd.org and look at the
FAQ. A great place to hang. You'll probably see DNS server info there,
or type man named and see what you get.
-krb
Bray Mailloux wrote:
Hello;
This is my first time managing anything larger than a simple dhcp or
pf box and I'm wondering if there is anyone available on this list who
can answer a few questions I have concerning the creation and
management of DNS servers.
Thanks;
Bray.
