Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
| doc:dns [2012/05/16 09:27] – Benjamin Collet | doc:dns [2020/01/13 13:32] – [Description of service] Add Knot Resolver configuration Alexandre Girard | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ~~NOTOC~~ | ~~NOTOC~~ | ||
| ====== Anycast DNS ====== | ====== Anycast DNS ====== | ||
| + | |||
| ===== Description of service ===== | ===== Description of service ===== | ||
| - | This service provides an efficient and fault tolerant way of resolving '' | + | This service provides an efficient and fault tolerant way of resolving '' |
| - | Three levels of participation exist: | + | |
| - | | + | |
| - | * running a slave DNS server: if you have a large number of hosts in you network, you may want to run a slave DNS server to increase performances; | + | |
| - | * using your DNS server as a forwarder: this is a simplest way of using the service. | + | |
| - | < | + | < |
| * Anycast DNS IPv4: **192.168.248.53**. | * Anycast DNS IPv4: **192.168.248.53**. | ||
| - | * Anycast DNS IPv6: **'' | + | * Anycast DNS IPv6: **'' |
| </ | </ | ||
| - | ==== Recursive DNS ==== | + | <note tip>**BIND9 configuration example (forwarder)** |
| - | + | ||
| - | We also aim to provide a recursive anycast DNS service within GLaNET. To use it, just configure the following addresses as your resover: | + | |
| - | + | ||
| - | <note tip> | + | |
| - | | + | |
| - | * Anycast recursive DNS IPv6: **'' | + | |
| - | </ | + | |
| - | + | ||
| - | If you want to participate and provide an anycast recursive DNS server, don't hesitate to [[doc: | + | |
| - | + | ||
| - | + | ||
| - | ===== List of anycast DNS servers ===== | + | |
| - | + | ||
| - | ^ Host | + | |
| - | | rdns.fa0.org | + | |
| - | | ns0.lv0.in | + | |
| - | + | ||
| - | ===== Master configuration example ===== | + | |
| - | <note important> | + | |
| - | When adding a master server, don't forget that your DNS server must listen on 192.168.248.53 and/or '' | + | |
| - | </ | + | |
| - | <note tip> | + | |
| - | Initial checkout: | + | |
| < | < | ||
| - | svn checkout https:// | ||
| - | </ | ||
| - | </ | ||
| - | |||
| - | ==== named.conf ==== | ||
| - | < | ||
| - | zone " | ||
| - | type master; | ||
| - | allow-transfer { any; }; | ||
| - | file "/ | ||
| - | }; | ||
| - | |||
| zone " | zone " | ||
| - | type master; | + | type forward; |
| - | | + | |
| - | file "/ | + | |
| }; | }; | ||
| zone " | zone " | ||
| - | type master; | + | type forward; |
| - | | + | |
| - | file "/ | + | |
| }; | }; | ||
| - | </ | + | </code></ |
| - | ==== crontab ==== | + | <note tip> |
| < | < | ||
| - | */5 * * * * root svn up / | + | server: |
| - | </ | + | (...) |
| - | FIXME Some zone checking should be done -> SVN pre-commit | + | |
| + | local-zone: " | ||
| - | ===== Slave configuration example ===== | + | domain-insecure: |
| - | FIXME IPv6 | + | (...) |
| - | ==== named.conf ==== | + | |
| - | < | + | |
| - | zone "glanet.org" { | + | |
| - | type slave; | + | |
| - | masters { 192.168.248.53; }; | + | |
| - | file "/ | + | |
| - | }; | + | |
| - | zone "168.192.in-addr.arpa" { | + | stub-zone: |
| - | | + | name: 168.192.in-addr.arpa. |
| - | | + | |
| - | file "/ | + | |
| - | }; | + | |
| - | zone "0.b.3.f.4.6.b.6.0.0.d.f.ip6.arpa" { | + | stub-zone: |
| - | | + | name: 0.b.3.f.4.6.b.6.0.0.d.f.ip6.arpa. |
| - | | + | |
| - | file "/ | + | |
| - | }; | + | |
| - | </ | + | </code></ |
| - | ===== Forwarder | + | <note tip> |
| - | FIXME IPv6 | + | |
| - | ==== named.conf ==== | + | |
| < | < | ||
| - | zone " | + | (...) |
| - | type forward; | + | -- Forward all requests for 168.192.in-addr.arpa. to fd00: |
| - | | + | policy.add(policy.suffix(policy.STUB({' |
| - | }; | + | |
| - | zone "168.192.in-addr.arpa" { | + | -- Forward all requests for 0.b.3.f.4.6.b.6.0.0.d.f.ip6.arpa to fd00: |
| - | type forward; | + | policy.add(policy.suffix(policy.STUB({' |
| - | forwarders | + | (...) |
| - | }; | + | </ |
| + | ===== Recursive DNS ===== | ||
| + | |||
| + | We also aim to provide a recursive anycast DNS service within GLaNET. To use it, just configure the following addresses as your resolver: | ||
| - | zone " | + | <note important> |
| - | | + | |
| - | forwarders { 192.168.248.53; }; | + | * Anycast recursive DNS IPv6: **'' |
| - | }; | + | </note> |
| - | </code> | + | |