HPE Community
Operating System - Linux
1832822 Members
3391 Online
110045 Solutions
New Discussion

Re: synchronize DNS servers over the VPN tunnel

 
'chris'
Super Advisor

‎06-04-2005 02:31 AM

‎06-04-2005 02:31 AM

synchronize DNS servers over the VPN tunnel

Hi

We are the HQ in our country and should synchronize
our 2 DNS Server with DNS Servers in the main office in USA
over the VPN tunnel.
USA main office is responsible for the domain xxx.net
and their DNS Servers running on Wondows.
Our domian is ch.xxx.net.

I would like to setup 2 DNS Slave Server at our site.
I'll setup there a master zone for our domain ch.xxx.net,
slave zone for the domain xxx.net
and allow the transfer from the Master DNS SERVER in USA ?
Is it a correct way ?
Could I setup Master Zone on the Slave Server ?

I have at the moment 2 internal DNS Servers running on Linux:
one Master for the domain ch.xxx.net
and one Slave.
Our DNS Servers are synchronized.
Now I think, the synchronization cannot work, I think,
because of our Master.

kind regards
chris
0 Kudos
Reply
2 REPLIES 2
Steven E. Protter
Exalted Contributor

‎06-04-2005 06:25 PM

‎06-04-2005 06:25 PM

Re: synchronize DNS servers over the VPN tunnel

Chris,

There are alot of ways to get this job done.

Your way seems feasible.

You could set up a series of Master servers in both places and use secure shell to exchange the DNS database records on a regular basis.

Because you are using a VPN, you have good security, but will lose a lot of band width encrpting the data.

You may find that a VPN just to exchange DNS data that doesn't change that often is overengineering.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
'chris'
Super Advisor

‎06-07-2005 11:02 AM

‎06-07-2005 11:02 AM

Re: synchronize DNS servers over the VPN tunnel

thanks,

you are completely right.
It doesn't need to setup slaves,
one master and one slave is OK.

I've created secondary zones and it works excellent.

I should give you more points for this answer.
Sorry, about that.

Have an other question.
What happens if the vpn tunnel goes down ?
I mean for one or two days.
Which TTL value should be set, because of the vpn connection ?
But anyway, I have only slaves zones and I get TTL values from master.
I think, the administrator of the master DNS server should carry about that,
or I'm wrong ?

greetings
chris
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.