Solved

DNS entry for VoIP server

Posted on 2012-04-11
2
278 Views
Last Modified: 2012-08-14
Scenario:

15 users, each of which has a PC and a VoIP phone.  

No Windows servers as each person pretty much works independently, with only simple file sharing on a NAS device.

All PCs use DHCP provided by the firewall, with the firewall being the default gateway and the ISPs DNS being used for DNS.

We are migrating phones to an internal VoIP server with 2 NICs.  One gets an IP address on the LAN and the other is on the public WAN.

I would like to have the address "voip.mycompany.com" internally resolve to the LAN ip address of the VoIP server.  To do that i have installed BIND on my VoIP server (freepbx) and added a master record for the mycompany.com domain and an A record for voip.mycompany.com.

I would assume that i need to change the DNS settings of the firewall, or those included with DHCP, or both to point to the internal DNS server.  I would like anything else to go out the public ISP servers to resolve.

IS there anything else i am missing?

Thanks
GL
0
Comment
Question by:gdinunzio
2 Comments
 
LVL 42

Accepted Solution

by:
kevinhsieh earned 500 total points
ID: 37836347
Your DHCP server would need to hand out the IP address of the VoIP server as the DNS server. If you are going to do a split DNS where mycompany.com exists internally and on the public Internet, you need to duplicate all of the public records onto your internal DNS server. Otherwise, you won't be able to resolve things such as mycompany.com, www.mycompany.com, mail.mycompany.com, etc. If this works for you, a better solution would be to make your internal zone mycompany.local, and create an A record for voip.mycompany.local. If you do this, all of your records for mycompany.com will work without andy issues, and you can still get DNS resolution for internal mycompany.local resources.
0
 

Author Comment

by:gdinunzio
ID: 37842636
That is what i thought.

I will be doing the former, replicating the external domain A records internally, as there are only a few.

Thanks again
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

There have been a lot of times when we have seen the need to enter a large number of DNS entries in a forward lookup zone. The standard procedure would be to launch the DNS Manager console, create the Zone and start adding new hosts using the New…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now