Replacing Windows DNS with BIND 9 on SBS 2008
Scenario. I have a Windows SBS 2008 server running at home. I have OpenDNS set up, but I only want my kids to be filtered through OpenDNS, so I'm looking into BIND 9, which I have downloaded and set up on my laptop to test.
I successfully have "views" configured using "match-clients", and it works well - with ONE exception. Obviously, SBS has a coulpe of DNS zones for the domain - domain.local and remote.domain.com
For some reason, I can't seem to get BIND working for remote.domain.com
When I ping remote.domain.com I just get a "Ping request could not find host remote.domain.com" message.
I've got two zones listed under each view "domain.local" and "remote.domain.com" - both loading their respective files.
What am I missing?
I successfully have "views" configured using "match-clients", and it works well - with ONE exception. Obviously, SBS has a coulpe of DNS zones for the domain - domain.local and remote.domain.com
For some reason, I can't seem to get BIND working for remote.domain.com
When I ping remote.domain.com I just get a "Ping request could not find host remote.domain.com" message.
I've got two zones listed under each view "domain.local" and "remote.domain.com" - both loading their respective files.
What am I missing?
ASKER
The one thing I wanted to avoid was static entries for DNS. I've got laptops, ipad, phones etc., and I would prefer the BIND DNS option.
I've already got the split working - it's just the remote.domain.com that I can't seem to get at the moment...
I've already got the split working - it's just the remote.domain.com that I can't seem to get at the moment...
Now I'm totally confused....
You have OpenDNS setup and it works.
You only want your kids to use that DNS Server.
So what will you be using for your other devices?
Where are you wanting to use BIND?
How will you get "kid" devices use OpenDNS and "dad" devices use ... whatever solution you want?
The other option is the reverse of my earlier proposal, set the KIDS devices to use statics and DHCP the other options for yourself. Although this suggestion is based on the assumption that the kids only have desktop PC or laptops that don't leave the house.
You have OpenDNS setup and it works.
You only want your kids to use that DNS Server.
So what will you be using for your other devices?
Where are you wanting to use BIND?
How will you get "kid" devices use OpenDNS and "dad" devices use ... whatever solution you want?
The other option is the reverse of my earlier proposal, set the KIDS devices to use statics and DHCP the other options for yourself. Although this suggestion is based on the assumption that the kids only have desktop PC or laptops that don't leave the house.
ASKER
OK - The built-in DNS on my SBS server, forwards all requests to OpenDNS - for ALL client IPs on my network.
By using "Views" in BIND, I can set forwarders for a pre-defined block of client IPs through my ISPs DNS, and anything NOT on that pre-defind list, through OpenDNS. That way my Wife and I can have unrestricted internet usage and all other devices have filtered internet.
The kids have mobile phones with Wi-Fi, and as I mentioned, I don't want to set up ANY static IPs on any device on my network.
BIND also integrates with Active Directory, so once I've got this working 100% on my test machine (I'm running BIND on my laptop at the moment), then I'll replace the Microsoft DNS with BIND because it's more configurable.
I have everything working except for this extra zone for the SBS "remote.domain.com" zone.
By using "Views" in BIND, I can set forwarders for a pre-defined block of client IPs through my ISPs DNS, and anything NOT on that pre-defind list, through OpenDNS. That way my Wife and I can have unrestricted internet usage and all other devices have filtered internet.
The kids have mobile phones with Wi-Fi, and as I mentioned, I don't want to set up ANY static IPs on any device on my network.
BIND also integrates with Active Directory, so once I've got this working 100% on my test machine (I'm running BIND on my laptop at the moment), then I'll replace the Microsoft DNS with BIND because it's more configurable.
I have everything working except for this extra zone for the SBS "remote.domain.com" zone.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I found my own solution to the problem
Setup your DHCP server to publish the OpenDNS servers, so when the kids switch on their PC's they get DHCP with the OpenDNS servers.
Configure your own PC/Laptop/whatever with static DNS entries for your other DNS server that you want to use.
Otherwise, I'm not too familiar with BIND, but check if you can configure conditional forwarders to your SBS box for the remote.domain.local zone.