Difference between revisions of "SKSP DNS"
Jump to navigation
Jump to search
(→Reverse Zones) |
(→Slave Delegation =) |
||
Line 56: | Line 56: | ||
'''NOTE THERE ARE TWO MORE REVERSE ZONES THAT NEED TO BE CONFIGURED''' | '''NOTE THERE ARE TWO MORE REVERSE ZONES THAT NEED TO BE CONFIGURED''' | ||
− | == Slave Delegation | + | == Slave Delegation == |
=== NS2 === | === NS2 === |
Revision as of 14:51, 22 October 2014
Contents
Skullspace DNS
System Details
- Soekris NET4501
- Running OpenBSD (5.5 as of initial deploy, subject to change with maintenance).
- IPv4: 206.220.196.51
- IPv6: 2604:4280:1:c0de::53
DNS Service Configuration
Using OpenBSD 5.5 base DNS server service named nsd(8).
Stop/Start Procedures
System/Service Level
- Start
- sudo /etc/rc.d/nsd start
- Stop
- sudo /etc/rc.d/nsd stop
- Restart
- sudo /etc/rc.d/nsd restart
Application Level
- Stop
- sudo nsd-control start
- Stop
- sudo nsd-control stop
- Reload Configuration
- sudo nsd-control reconfig
- Force Notify To Configured Slaves
- sudo nsd-control notify
- sudo nsd-control notify <zonename>
Configuration =
Configuration file is in /var/nsd/etc/nsd.conf Zone locations: /var/nsd/zones
When editing the configuration it is RECOMMENDED to check the configuration syntax before restarting (via sudo nsd-checkconf /var/nsd/etc/nsd.conf) and RECOMMENDED to use the nsd-control reconfig instead of service restart restart.
Configured Zones
Forward Zones
- skullspace.ca
- /var/nsd/zones/skullspace.ca
Reverse Zones
- 193.220.206.in-addr-arpa
- /var/nsd/zones/reverse-sksp-ipv4-a.sksp
- e.d.0.c.0.8.2.4.4.0.6.2.ip6.arpa
- /var/nsd/zones/reverse-sksp-ipv6-a.sksp
NOTE THERE ARE TWO MORE REVERSE ZONES THAT NEED TO BE CONFIGURED
Slave Delegation
NS2
ns2.skullspace.ca A 104.131.53.85 ns2.skullspace.ca AAAA 2604:a880:800:10::8:7001
Run By: Theo Baschak
NS3
ns3.skullspace.ca A 198.98.120.171 ns3.skullspace.ca AAAA 2605:f700:c0:1::3782:2f74
Run By: Mark Jenkins
System Access
Email it AT skullspace.ca with your request, the more detail the better and the higher the probability of getting said access. Note requires also sending an SSH public key.