So I am kind of in a BIND. HaHaHaHaHaHa Kind of funny.
I need to setup a DNS server that I can manage while also responding from the above Active Directory Server. This is kind of a lab but production. I cannot connect to other services on the production network unless the device and account are inside AD. There is some kind of internal problem with creating DNS records. Arguments have been placed to why PTR are need but it's been falling on deaf ears. But I was giving the option of creating my own DNS server using CentOS only which I can manage but must be current zone for our building, "building5.city.state.country.xnet". Good news. Bad news. I have BIND working, well to an extent. All the records inside BIND / named resolve but anything on the production DNS is not being pulled back down to this DNS server to hand to the client. Also I am unable to add the computers to the domain. Need this server to look into its zone and if not there query the main DNS server. Tried adding forwarder { corp.DNS.IP.Address; }; but doesn't do anything.
From Bind server with resolv.conf with secondary DNS point to corp server I can resolve but the devices behind it can not and if I point the DNS to the corp server the application crashes almost instantly for not being about to reverse lookup.
I set up based on these sites:
https://www.itzgeek.com/how-tos/linux/c ... hel-7.html
_msdsc configuration.
https://www.serverlab.ca/tutorials/linu ... y-domains/
Is there a way to do? Is there a name for it like Humpty Dumpty DNS? Is there a site I can refer to?
DNS BIND named Forwarding AD
-
captaindoogles
- Posts: 2
- Joined: 2022/03/23 17:06:27
Re: DNS BIND named Forwarding AD
Found this site that helped my add my device to Active Directory.
https://support.scalearc.com/kb/article ... d-on-linux
After adding these into this into the zone file:
/etc/named.conf
zone "b5.la.ca.us.xnet" IN {
type master;
file "/var/named/b5.la.ca.us.xnet";
forwarders { 10.254.254.69; };
allow-update { internal-networks; };
};
/var/named/b5.la.ca.us.xnet
;NAME SERVER INFORMATION
@ IN NS ns1.b5.la.ca.us.xnet.
@ IN NS dc01.b5.la.ca.us.xnet.
; A RECORD INFORMATON
ns1 IN A. 10.0.0.53
dc01 IN A 10.254.254.69
; SRV RECORDS
_ldap._tcp.b5.la.ca.us.xnet. SRV 0 0 389 dc01.b5.la.ca.us.xnet.
_ldap._tcp.dc._msdcs.b5.la.ca.us.xnet. SRV 0 0 389 dc01.b5.la.ca.us.xnet.
_kerberos._tcp.b5.la.ca.us.xnet. SRV 0 0 88 dc01.b5.la.ca.us.xnet.
_kerberos._tcp.dc._msdcs.b5.la.ca.us.xnet. 0 0 88 dc01.b5.la.ca.us.xnet.
But still unable to get information from the zones on the above DNS server dc01 (Authoritative Server). The BIND server I am using is ns1 = 10.0.0.53
https://support.scalearc.com/kb/article ... d-on-linux
After adding these into this into the zone file:
/etc/named.conf
zone "b5.la.ca.us.xnet" IN {
type master;
file "/var/named/b5.la.ca.us.xnet";
forwarders { 10.254.254.69; };
allow-update { internal-networks; };
};
/var/named/b5.la.ca.us.xnet
;NAME SERVER INFORMATION
@ IN NS ns1.b5.la.ca.us.xnet.
@ IN NS dc01.b5.la.ca.us.xnet.
; A RECORD INFORMATON
ns1 IN A. 10.0.0.53
dc01 IN A 10.254.254.69
; SRV RECORDS
_ldap._tcp.b5.la.ca.us.xnet. SRV 0 0 389 dc01.b5.la.ca.us.xnet.
_ldap._tcp.dc._msdcs.b5.la.ca.us.xnet. SRV 0 0 389 dc01.b5.la.ca.us.xnet.
_kerberos._tcp.b5.la.ca.us.xnet. SRV 0 0 88 dc01.b5.la.ca.us.xnet.
_kerberos._tcp.dc._msdcs.b5.la.ca.us.xnet. 0 0 88 dc01.b5.la.ca.us.xnet.
But still unable to get information from the zones on the above DNS server dc01 (Authoritative Server). The BIND server I am using is ns1 = 10.0.0.53