Solved

I would like to create a DNS server

Posted on 2014-11-13
12
188 Views
Last Modified: 2014-11-19
I would like to create my own DNS server for either a workgroup or Domain.  Is this possible to do on my own.  What is the simplest way to begin doing so?  Any direction would be appreciated.  Is there a third party tool that could help my make my own?
0
Comment
Question by:al4629740
  • 5
  • 4
  • 3
12 Comments
 
LVL 95

Expert Comment

by:Lee W, MVP
ID: 40440760
What do you mean?  In a domain, Active Directory installation automatically installs the DNS server and configures it.

Can you elaborate on why you want to do this - DNS is used in a variety of places and for a variety of reasons - understanding your goals will make advising you easier.
0
 

Author Comment

by:al4629740
ID: 40440793
I would like to create a DNS server that blocks certain sites based on a blacklist. I don't want to use any public ones such as open DNS
0
 
LVL 95

Assisted Solution

by:Lee W, MVP
Lee W, MVP earned 166 total points
ID: 40440905
A hosts file will do the same thing on a local PC.

Alternately, you can setup any DNS server and just add a site - to block www.xxx.com simply add xxx.com as a domain the DNS server knows about.  Lookups will find no reference to www and return page not found.  

The problem with this plan is to be effective (depending on what you block) it could be a full time job for dozens of people - which is why employing an existing service is usually a better option).
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 
LVL 6

Expert Comment

by:Asif Bacchus
ID: 40440982
What is your current setup?  Are you in a domain environment, just a workgroup, using a router, behind a linux/BSD firewall?  Or is this question more of a general knowledge type question?  If so, are you wondering about individual computers or a domain environment?

Regarding Lee's point, he is correct about the time involved if you are blocking many domains.  If you are looking to block a handful (like facebook or hotmail, etc.) then manual entries are feasible.  Otherwise, third party blacklists are a much faster approach.
0
 

Author Comment

by:al4629740
ID: 40441917
It's more of interest in implementing it for knowledge and to create my own for my clients to use.

Couldn't I just use published blacklists also?

I still would like some ideas on making my own dns server for web filtering
0
 
LVL 95

Expert Comment

by:Lee W, MVP
ID: 40442420
What ideas - already given instructions - to repeat:
Alternately, you can setup any DNS server and just add a site - to block www.xxx.com simply add xxx.com as a domain the DNS server knows about.  Lookups will find no reference to www and return page not found.  

You could script the addition of published blacklists into a DNS server.
0
 

Author Comment

by:al4629740
ID: 40443356
Creating a DNS server in Windows server is easy, but what about if I wanted to create a DNS server on the workstation?
0
 
LVL 95

Expert Comment

by:Lee W, MVP
ID: 40443693
Few if any professionals would do so, so now your asking a fringe question that, in m opinion, is unlikely to get you very many good and experienced responses.  Windows Server comes with a DNS server, so that is what I use - I wouldn't think of putting on one a workstation.  You could use something with linux, but that potentially gets more complicated.
0
 

Author Comment

by:al4629740
ID: 40443710
In the end my goal is to create a web content filter system of my own. I would imagine creating my own DNS server would be the first place to start.
0
 
LVL 6

Assisted Solution

by:Asif Bacchus
Asif Bacchus earned 334 total points
ID: 40444008
I will preface this by saying that  setting up your own DNS server for what you trying to do is more trouble than it's worth, but the basics are not really that difficult.  Others have covered the Windows Server angle, so I'll address your workstation question.

I would go with a linux distro, as barebones as possible, to do this.  Take a look at Turnkey Linux (http://www.turnkeylinux.org/) as they have prebuilt barebones DNS VMs you can test out.  From there a good tutorial via google will get you going.  As a note, if you are setting up a DNS server, please do not expect a standard workstation NIC to do the job.  Invest in an Intel Server NIC for a few extra dollars.

HTH
0
 

Author Comment

by:al4629740
ID: 40444078
That is exactly what I was looking for.  Thank you.   Is Linux the best way to go?  What do most public DNS servers consist of.
0
 
LVL 6

Accepted Solution

by:
Asif Bacchus earned 334 total points
ID: 40444089
Linux is a very secure way to go, as long as you keep the system updated.  I like TurnKey's VMs because they have an auto-update feature built in and are based on a STABLE distributions that are commercial grade.  Plus, they have a nice GUI management interface that is nice when you are learning.  

Most DNS servers are based on some flavour of *NIX or BSD.  BSD is a better choice since it's even more secure out of the box than linux (IMHO) but it is harder to work with and I don't know of many tutorials or pre-made VMs that you can experiment with.

For now, I'd suggest getting your feet wet with a simple linux distro and DNS system like the one at TurnKey.  It will be very reliable for you and do what you're looking for.

Cheers.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to transfer domain from current registrar to GoDaddy 3 25
software inventory tools 3 40
Internet options/Settings 1 47
Changing Lease Duration for DHCP clients 34 35
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
This video demonstrates how to use each tool, their shortcuts, where and when to use them, and how to use the keyboard to improve workflow.
The viewer will learn how to successfully download and install the SARDU utility on Windows 8, without downloading adware.

827 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question