Solved

DNS Clustering With Windows and Linux

Posted on 2011-09-07
11
305 Views
Last Modified: 2012-05-12
We are setting up a hosting solution where we have a Windows 2008 R2 box and a Linux CentOS 5.5 box.

We need redundant DNS (ns1.domain.com and ns2.domain.com) set up so that both boxes will serve up the same DNS records should the other go down (doesn't matter which is primary and which is secondary, as long as they fail over properly).

Has anyone tried this? What is the best way to set this up? We really don't want to add a third box unless absolutely necessary.
0
Comment
Question by:pmcmillan3698
  • 6
  • 4
11 Comments
 
LVL 8

Expert Comment

by:Toxacon
ID: 36497550
It doesn't matter which one is the primary as long as zone transfers to the secondary work ok.
0
 

Author Comment

by:pmcmillan3698
ID: 36497610
How do we set up the zone transfers? If we set up Windows as secondary, it won't pull the records from the Linux box...we don't have any Linux experts here so it could be an issue with config on that box I suppose.

0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36497991
In the zone block in your named.conf, add the following

allow-transfer { ip.of.slave; };

Open in new window


You can also put it in the 'options' section to have it apply globally.
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36498047
Add your windows box as an NS in your zone files as well along with an A record for it.
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36507608
@pmcmillan3698 did this resolve your issue?
0
Do email signature updates give you a headache?

Do you feel like you are constantly making changes to email signatures? Are the images not formatting how you want them to? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today.

 
LVL 21

Expert Comment

by:Papertrip
ID: 36520757
Were you able to get this working?
0
 

Author Comment

by:pmcmillan3698
ID: 36522083
Add your windows box as an NS in your zone files as well along with an A record for it.
Can you give me an example zone record showing what you mean exactly?
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36524347
I could type out the explanation, but this link does a good job :)
0
 

Author Comment

by:pmcmillan3698
ID: 36529429
OK, so I'm attempting to set up the Linux box as primary and the Windows as secondary. I have entered the zone records on the Linux box and am trying to create secondary records on the Windows box. When I do, here are the messages and errors I get on the Windows box. I've replaced data with <descriptive tags>:

6522: A more recent version, version 2011062202 of zone <domain.com> was found at the DNS server at <ip-address>. Zone transfer is in progress.

6525: A zone transfer request for the secondary zone <domain.com> was refused by the master DNS server at <ip-address>. Check the zone at the master server <ip-address> to verify that zone transfer is enabled to this server...

Per your suggestion, Papertrip, I've added the IP of the Windows DNS server to named.conf in the Linux box (I just put it in Options so it would work for all domains).

The Windows box is listening for DNS queries on one IP address. It has five assigned. I only put the IP address that the DNS service is listening on in named.conf, but what IP would the Linux box see when the Windows server requests a zone transfer? Could that be the issue?

0
 
LVL 21

Accepted Solution

by:
Papertrip earned 250 total points
ID: 36532694
That could definitely be an issue, and it sounds like that may be what is happening.

Try this:
allow-transfer { ip.of.slave; ip.of.slave; ip.of.slave; };

Pretty straight forward just add another IP with a semi-colon after it.

This problem could however be a typo or just some confusion in named.conf.  BTW run 'named-checkconf' after you make config changes before reloading/restarting the server.

Anyways try what I suggested, and if it doesn't work, then come back and paste me the options section of named.conf, along with the zone block of the zone you are trying to transfer.

We'll fix this there isn't much that could be wrong, we are like 90% there.
0
 

Author Closing Comment

by:pmcmillan3698
ID: 36536156
Ding ding ding! That did it - added first IP of Windows server to named.conf, restarted BIND and the Windows DNS server began loading records right in - thanks for all your help, couldn't have solved it without you!
0

Featured Post

Do email signature updates give you a headache?

Do you feel like all of your time is spent managing email signatures? Too busy to visit every user’s desk to make updates? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today!

Join & Write a Comment

I was supporting a handful of Windows 2008 (non-R2) 2 node clusters with shared quorum disks. Some had SQL 2008 installed and some were just a vendor application that we supported. For the purposes of this article it doesn’t really matter which so w…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now