[Pdns-users] Migration to PowerDNS from Bind 9.7

Ian Easter ieaster at telvue.com
Thu Nov 15 21:12:26 UTC 2018


Thank you for the confirmation Asanka!

Always best to have a second person "check your work."

*Thank you,*

On Wed, Nov 14, 2018 at 8:25 PM Asanka Gunasekara <asankag at talkup.com.au>

> Hi Ian,
> Welcome aboard. I'm also new to PDNS and only an expert of few months :)
> From the info you provided everything seems to be good. Someone with
> higher understanding will chime in if there's something wrong with it :)
> Assuming your Auth DNS servers are only serving private internal
> zones/domains, you can use the following setup to consolidate resources
> instead of having to run separate instances:
> https://doc.powerdns.com/authoritative/guides/recursion.html
> What I did was have 1 master and 2x slave (replication via mysql back-end)
> Auth servers. Master is only accessible via management IP and only used to
> configure DNS entries. Replication is also handled via management IP
> addresses for security and is setup as a one-way sync (master->slave). Only
> slaves are visible others in the organisation.
> Both slaves are configured with Auth DNS + Recursor as per the Scenario 1
> of the above link.
> Hope this helps.
> Kind Regards,
> Asanka Gunasekara
> On 15/11/2018 6:29:58 AM, Ian Easter <ieaster at telvue.com> wrote:
> Howdy folks!
> As many before me, I have inherited a network infrastructure that is
> showing its age.  First order is to update the self-hosted DNS servers.
> This is new territory for me, so I get the opportunity to learn as I
> progress in the endeavor.
> Right now it is 1 BIND Master and 2 BIND Slaves and they provide DNS for
> our local office as well as a remote Colo.  They handle the Private
> Internal Zones we have as well as directing requests for public internet
> resolution.  At least, I believe that to the best summary of how they're
> performing.
> I have a test environment setup currently and everything looks to be
> running smoothly.  My question is geared toward verifying if I understood
> the overall functions correctly and have things configured as it should be
> (optimally).
> I have PDNS Recursor sitting as the front for all of the DNS requests so
> they may be resolved for public websites/access and I have the
> `forward-zones` option set to forward all requests to the Authoritative and
> Slave PDNS Servers for our private internal domains.  So Recursor is
> getting all requests, private zone/domain requests are forwarded to the
> Authoritative server and all others are obtained externally.
> Is this the proper setup or is there a way that the Authoritative DNS
> Server would need to be configured to manage requests in this fashion?
> *Thank you.*
> _______________________________________________ Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users
> <https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=emailclient> Virus-free.
> www.avast.com
> <https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=emailclient>
> <#m_-586991028752395626_DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20181115/b95de5fe/attachment.html>

More information about the Pdns-users mailing list