Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

DNS BIND

Posted on 2013-01-29
3
Medium Priority
?
270 Views
Last Modified: 2013-02-06
Hello BIND experts,

I'm not a DNS expert. Suppose i have two BIND servers. Both have the entries below:

vpn.pepsi.com.                 in      ns      adns-LA.pepsi.com.
vpn.pepsi.com.                 in      ns      adns-NY.pepsi.com.
adns-LA.pepsi.com.               in      a      1.1.1.1
adns-NY.pepsi.com.               in      a      2.2.2.2


Question#1: Are lookups for vpn.pepsi.com being round-robined or are both A records being returned to the client?

Question #2: If lookups are being round-robined, supposed adns-la.pepsi.com (1.1.1.1) goes down. Wouldn't BIND still try to answer with that record? I assume yes since it doesnt have a way to know that adns-la.pepsi.com is down.
0
Comment
Question by:trojan81
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 13

Expert Comment

by:Ugo Mena
ID: 38833907
to configure RR on BIND DNS, you would define multiple A records with the same name and different IPs.

adns-LA.pepsi.com.               in      a      1.1.1.1
                                                 in      a      2.2.2.2

adns-NY.pepsi.com.               in      a      3.3.3.3
                                                 in      a      4.4.4.4

or similarly

vpn.pepsi.com                in          a       1.1.1.1
                                         in           a       2.2.2.2
                                         in            a      3.3.3.3
                                         in             a     4.4.4.4

DNS will deliver all the IP addresses defined, the first IP address in the returned list will be in a (default) round robin order (controlled by the rrset-order 'named.conf' statement).
0
 

Author Comment

by:trojan81
ID: 38833920
ultralites, thanks for the explanation. I don't see that in the BIND configs so I assume we are not RR.

So based on my example, when a user does a lookup for vpn.pepsi.com is he querying both ADNS-la.pepsi.com and adns-ny.pepsi.com?
0
 
LVL 13

Accepted Solution

by:
Ugo Mena earned 2000 total points
ID: 38835727
I think it would depend on the routing decisions made based on path, network policies, and/or rule-sets. I would assume the faster/shorter connection would respond first.
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question