Level Seven - [bind setup]

Bind for NT

Bind dns server for windows nt: Download

Bind is the best dns server for NT, period.
Here's how you set up the zone file end of things:

typical zone file:

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

; Authoritative data for L7.mil

@ IN SOA frankenserver.L7.net. administrator.L7.net.
(

1999120600 ; Serial

10800 ; Refresh

3600 ; Retry

604800 ; Expire

86400 ) ; Minimum

IN NS frankenserver.L7.net.

IN NS shit-happens-at.L7.net.

IN MX 0 L7.mil.

IN MX 10 Shit-happens-at.L7.net.

IN A 216.173.223.10

localhost IN A 127.0.0.1

www IN A 216.173.223.12

ftp IN CNAME frankenserver.L7.net.

mail IN CNAME going-postal-at.L7.net.

pop3 IN CNAME going-postal-at.L7.net.

smtp IN CNAME going-postal-at.L7.net.

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

and it breaks down like this
<** my comments look like this **>

; Authoritative data for L7.mil
<** this is a comment that tells you what the file is for **>

@ IN SOA frankenserver.L7.net. administrator.L7.net.
<** this says "hey i'm a nameserver" **>

1999120600 ; Serial

<** this says "this is the number of this file, if **>

<** it's higher than what you think it should have **>

<** been, reload this file as the valid data when **>

<** the service starts" it's format is yyyymmdd## **>

10800 ; Refresh

<** this says "hey you remote server, you need to **>

<** refresh what you know about me refresh your **>

<** data for me this often" (i think it's time in **>

<** minutes but i don't know, it's the default) **>

3600 ; Retry

<** retry this often if i didn't exist last time you tried. **>

604800 ; Expire

<** Time out my data and reload from me this often maximum **>

86400 ) ; Minimum

<** My data is good for this long minimum **>

<** the only critical thing in the above is the serial **>

<** number, which you need to update every time you change **>

<** the file **>

IN NS frankenserver.L7.net.

<** this is the first nameserver for this zone. **>

<** in this example it's frankenserver.L7.net **>

IN NS shit-happens-at.L7.net.

<** this is the second nameserver for this zone **>

IN MX 0 L7.mil.

<** this is your primary mailserver. I set it to be "domain **>

<** root" to save a ton of hassles with some e mail programs **>

<** and crappy code in mailers such as outlook express. this **>

<** means a redirector should be installed on the box so if **>

<** people go to http://domain.com it will url fixup their **>

<** browser and they will be sent to www.domain.com transparently **>

IN MX 10 Shit-happens-at.L7.net.

<** this is your secondary mailserver. the number following the **>

<** IN MX is the priority. zero is highest priority **>

IN A 216.173.223.10

<** okay, i cheat a bit here. my mailserver is 216.173.223.10 **>

<** (going-postal-at.L7.net) by setting "nothing" in the first entry, **>

<** the "domain root" is forced to this ip. which is the mailserver. **>

<** it saves a lot of pain, and makes it so your users don't need to **>

<** do things like user@ix.netcom.com **>

localhost IN A 127.0.0.1

<** not really necessary, I put the loopback in for continuity. **>

www IN A 216.173.223.12

<** the webserver. notice that I didn't bother to put in .L7.mil **>

<** bind for nt doesn't require it, dunno about msdns **>

ftp IN CNAME frankenserver.L7.net.

<** in my main zone file (L7.net) there is a line that says **>

<** frankenserver in a 216.173.223.1 this is my main webserver, **>

<** so I cnamed every domains "ftp.*.*" to it, saving a ton of **>

<** time setting up zone files. (to set a new zone i can take **>

<** this file and change the domain at the top and the mx record **>

<** and i'm done) a cname is like "it's also called this" **>

mail IN CNAME going-postal-at.L7.net.

<** backwards compatibility added for those users that **>

<** think that user@mail.domain.com is proper **>

pop3 IN CNAME going-postal-at.L7.net.

<** ditto **>

smtp IN CNAME going-postal-at.L7.net.

<** ditto **>

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

your named.boot file should look like this:

; File: named.boot
; Purpose: give the DNS its startup parameters and
; list of startup files.

Directory c:\\winnt\\dns

;

check-names primary fail
check-names secondary warn
check-names response ignore

; establish a loopback entry for this machine, and tell
; it to load its identity from db.127.0.0
primary 0.0.127.IN-ADDR.ARPA db.127.0.0

<** this sets the netblock this covers **>

; XFRNETS parameter limits the transfer of zone information
; to machines matching the subnet wildcard/mask entries listed.

<** I pulled out my xfernets line so i can dns for **>
<** my clients anywhere in the world, especially for special **>
<** stuff like "working domains" like L7.mil that only work **>
<** if your using my dns. **>

; set ourselves as primary server for the zone

primary internic.net p.dns.internic.net.dns
<** this entry is cause internics dns settings were **>
<** screwed for a while, so i set my nameserver as "boss" **>
<** (as far as it was concerned) for their domain so i **>
<** could fix their mailserver records, since my mailserver **>
<** was refusing to send to it)so i could send mail to them **>
<** in spite of their problem. **>

primary L7.net p.dns.L7.net.dns

<** and so on **>

primary L7.org p.dns.L7.org.dns

<** and so on **>

primary L7.mil p.dns.L7.mil.dns
<** and so on **>

<** notice my choice of filenames. this is so that **>
<** they all appear in the same spot in file manager **>
<** and you can associate .dns with notepad **>
<** on a secondary name server I name the files **>
<** s.dns.L7.mil so I can tell at a glance if the **>
<** box is a primary or secondary while in the dir. **>
<** (cuts down on mistakes at 5 am after no sleep **>
<** for 3 nights) **>

; provide reverse address-to-host mapping

primary 223.173.216.in-addr.arpa named.rev.L7

<** this is your reverse zone file. example below. **>
<** again, renamed so at a glance i know what the **>
<** hell it is. KISS rules. **>

; prime the DNS with root server 'hint' information

cache . db.cache

<** default entry, breaking it would probably be bad... **>
<** (actually it's the file that contains all the **>
<** information like "where are the root servers for **>
<** the net" **>

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

named.rev.L7 (or whatever you called it)

; L7.Net named.rev.subnets file data
;
; this file is for leased subnets reverse lookup
; block 216.173.223.0

@ IN SOA frankenserver.L7.net. postmaster.L7.net.

1999120600 ; Serial

10800 ; Refresh

3600 ; Retry

604800 ; Expire

86400 ) ; Minimum

<** seen all this before **>

1 IN PTR frankenserver.L7.net.

<** primary dns **>

2 IN PTR shit-happens-at.L7.net.

<** secondary dns **>

3 IN PTR ns1.L7.net.

<** primary dns for those clients without a sense of humor :( **>

4 IN PTR ns2.L7.net.

<** secondary dns for those clients without a sense of humor :( **>

<** note that .3 and .1 are the same box, as are .2 and **>

<** .4, so i only need one set of p.dns zone files... >;) **>

5 IN PTR call-me-snake.L7.net.

<** primary radius of course :) **>

6 IN PTR come-get-some.L7.net.

<** secondary radius **>

10 IN PTR going-postal-at.L7.net.

<** that mailserver i mentioned earlier **>

<** comment the hell out of your zone files, you'll **>

<** thank me when you need to fix something later :) **>

<** and put the damned router at 254 where it belongs :) **>

254 IN PTR router.L7.net.

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

hope this is useful to someone :)
-dd