#1
  1. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Apr 2001
    Location
    Milian, Italy
    Posts
    357
    Rep Power
    14

    dns service problem


    currently I have 2 domains for testing which have been pointed by zoneedit.com

    I am hosting testing, for instance I have 50 clients, with 1.com, 2.com....etc 50 .com.

    How do I solved the dns name service? I can't change all the ip address at the same time once there is
    a. change of ip address.

    Can I set up "ONE-same box of my mail server with port 53" DNS server in my own site, so zoneedit.com points to my dns server? ANd my dns server points to the "50 zone files" I work out all the zone files.


    please enlighten me, please. this is a initial problem I can't solve at the moment.
    Last edited by worldtouch; November 28th, 2001 at 12:11 AM.
    worldtouch.
    an ordinary client of zoneedit.com
  2. #2
  3. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jan 2001
    Posts
    4
    Rep Power
    0
    >> this is a initial problem I can't solve at the moment

    It's so-called gluelessness in djb's term. Who is djb? Dan Bernstein, the author of qmail and djbdns.

    What exactly is gluelessness?

    In simple term, when your DNS servers, say ns1.domain.com and ns2.domain.com are authoritative for sub.domain.com and myfrienddomain.com, then they must be authoritative for their own.

    Example for domain.com 's NS record:

    domain.com. IN NS ns1.domain.com.
    domain.com. IN NS ns2.domain.com.

    Example for myfrienddomain.com:

    myfrienddomain.com. IN NS ns1.domain.com.
    myfrienddomain.com. IN NS ns2.domain.com.

    This is absolutely fine. When it's gluelessness, your domain.com would look like so:

    domain.com. IN NS ns1.myisp.com.
    domain.com. IN NS ns2.myisp.com.

    As you can see, domain.com is authoritative for myfrienddomain.com but not authoritative for itself, that's gluelessness (very bad).

    For more info, check out this link -> http://cr.yp.to/djbdns/notes.html My examples above just trying to explain in simple terms.

    Anyway, to solve the problem, you
    don't run DNS servers yourself. You refer all of your 50 clients to your myisp.com's DNS server.
  4. #3
  5. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Apr 2001
    Location
    Milian, Italy
    Posts
    357
    Rep Power
    14
    50 different domains and all of them are my virtual hosting client for instances.
    In the company that I am serving , I only need to fill up forms and ask my isp to do the domain name service.

    But at "other work place", I am using dynamic IP and two domains and with 14 subdomains are pointing by zoneedit.com.

    FreeBSD, I do understand your message.

    my question:

    Can I set up "ONE-Rh linux box of my mail server with port 53" DNS server in my own site, so zoneedit.com points to my dns server? ANd my dns server points to the "50 zone files" I work out all the zone files.
    so whenever there is an ip change, I only need to take care of the a single ip change with zoneedit.com. HE points to me , my machine points to the 50 virtual domain name in own own dns.

    my testing client will www.1.com resolve the domain to my DNS server and subsqently point to my apache server
    Last edited by worldtouch; November 28th, 2001 at 02:12 AM.
    worldtouch.
    an ordinary client of zoneedit.com
  6. #4
  7. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jan 2001
    Posts
    4
    Rep Power
    0
    >> FreeBSD, I do understand your message

    No, you don't. Your question was all about gluelessness.

    >> so zoneedit.com points to my dns server?

    zoneedit.com doesn't do delegation. In this case, zoneedit.com is equivalent to myisp.com in my previous example. As djb mentioned, gluelessness is extremely bad and possibly 70% of visitors won't be able to reach those 50 sites of your clients.
    When running a inconsistent and unreliable DNS servers like that, why not releasing all 50 domains and tell zoneedit.com to host them? Apparently, it's better off to get static IPs and run your very own DNS servers. Don't tell me you can't get static IPs. There is no free lunch in this world, if you wanna play this toy, you need to pay for it.
    >> I only need to take care of the a single ip change with zoneedit.com

    I know what you mean. Instead of editing 50 + 1 domains thru zoneedit.com, it's much easier to edit just 1 domain (yours). But gluelessness is very bad, just don't do it. Further, with dynamic IPs, your infranstructure just doesn't allow you to run your own DNS servers.

    Now please read thru this once again -> http://cr.yp.to/djbdns/notes.html
    Last edited by freebsd; November 28th, 2001 at 02:49 AM.
  8. #5
  9. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Apr 2001
    Location
    Milian, Italy
    Posts
    357
    Rep Power
    14
    from
    http://dynamic.zoneedit.com/doc/dynamic.html

    UNIX Clients:

    DDClient 3.0 is a Perl client used to update dynamic DNS entries for accounts on many dynamic DNS services. You can get it here: http://burry.ca:4141/ddclient/.
    IPCheck has built in support for popular CABLE/DSL NAT routers. It works on OS/2 as well as most Unix's. Source code & documentation is here: http://zoneclient.sourceforge.net/. Python is required.
    From one of our customers: It's very easy to update the dynamic zoneedit entries on UNIX with either of these two command lines (if you have wget or lynx installed):
    lynx -source -auth=usernameassword 'http://dynamic.zoneedit.com/auth/dynamic.html?host=www.mydomain.com'

    wget -O - --http-user=username --http-passwd=password 'http://dynamic.zoneedit.com/auth/dynamic.html?host=www.mydomain.com'

    The correct place to call one of the above commands (or a perl client) is /etc/ppp/ip-up or /etc/ppp/ppp.linkup, which are scripts that gets called whenever a ppp connection is made.

    Other:

    zedynip.pl : ZoneEdit PERL source code that is can be used as a 'reference implementation' for a client or daemon.
    IPCheck works on OS/2 as well http://zoneclient.sourceforge.net/.



    I think these program will also work when the apache server is behind the router???

    Last year, I know zero about linux, I just learnt a bit of it.
    worldtouch.
    an ordinary client of zoneedit.com
  10. #6
  11. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jan 2001
    Posts
    4
    Rep Power
    0
    Why you posted all these zoneedit stuffs?
    And what do they have to do with your original questions? Didn't my statement clear enough? Here it is once again: Don't run authoritative DNS servers when you don't have static IPs, as simple as that.

    >> I think these program will also work when the apache server is behind the router???

    Nothing to do with Apache whether it's behind a router. Instead, these programs are the tools for people to update their IP so the domain can be DNS resolvable to the new IP.
  12. #7
  13. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Apr 2001
    Location
    Milian, Italy
    Posts
    357
    Rep Power
    14
    normally a hosting will have his /her own dns server, so his /her isp points to his dns server while he resolves all his hosting client himself in the zones files.

    DOes these two physical DNS server has to be physcally in the same spots?


    can one in paris if my office is paris France ?

    can the another if my other site is in Milan Italy ?

    I have a "physcially -attack " by people last night ?
    Last edited by worldtouch; December 7th, 2001 at 01:52 AM.
    worldtouch.
    an ordinary client of zoneedit.com
  14. #8
  15. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jan 2001
    Posts
    4
    Rep Power
    0
    >> so his /her isp points to his dns server

    Point what?

    >> DOes these two physical DNS server

    Which two?

    >> has to be physcally in the same spots?

    Authoritative DNS servers don't have to be within the same network. One can be in NY while the slave could be in SF or perhaps UK.

    >> I have a "physcially -attack " by people last night ?

    What about?

IMN logo majestic logo threadwatch logo seochat tools logo