DNS Authority Question
Danny Mayer
mayer at gis.net
Sun Nov 24 03:21:46 UTC 2002
At 11:26 PM 11/10/02, Joshua Kuo wrote:
>hi all:
>
>i've been recently assigned the new DNS admin, and one of my new tasks is
>to add some new MX records to one of the new machines (let's call it
>beavis.com). i've done the following:
>
>@ A 3.3.3.3
> MX 100 new.mail1.beavis.com
> MX 200 new.mail2.beavis.com
> MX 300 mail.beavis.com
>
>the original assignment was just:
>
>@ A 3.3.3.3
> MX 30 mail.beavis.com
>
>after i've done all that, did a ndc reload, and tried to do a dig on this
>machine, i was surprised to find that the MX record was NOT updated.
You also need to update the serial number of the SOA record for it to take
affect otherwise the slave servers won't see it.
>below is the result of my dig (modified, of course):
What's of course about it? If you want real help you should be posting the
actual names.
>[me at home me]$ dig beavis.com mx
>
>; <<>> DiG 9.2.0 <<>> beavis.com mx
>;; global options: printcmd
>;; Got answer:
>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51587
>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
>
>;; QUESTION SECTION:
>;beavis.com. IN MX
>
>;; ANSWER SECTION:
>beavis.com. 86400 IN MX 30 mail.beavis.com.
>
>;; AUTHORITY SECTION:
>beavis.com. 86400 IN NS slave-dns.1.my.isp.
>
>;; ADDITIONAL SECTION:
>mail.beavis.com. 86400 IN A 3.3.3.3
>dns-server.1.my.isp. 86400 IN A 20.20.20.20
>
>i am curious about the AUTHORITY SECTION, because i have 3 DNS servers (1
>master, 2 slaves), and for some reason this machine only has the first
>slave as its authority. i did another dig on all other machines, and they
>have all 3 of the DNS master & slaves show up as the AUTHORITY like the
>following:
>
>;; AUTHORITY SECTION:
>butthead.com. 86400 IN NS master-dns.my.isp.
>butthead.com. 86400 IN NS slave-dns.1.my.isp.
>butthead.com. 86400 IN NS slave-dns.2.my.isp.
>
>
>where is dig getting the authority section from? i have checked all my
>config files and i could not find where i could specify it. is it
>something that his machine needs to do with Network Solutions (or whoever
>they registered the name through)?
Noone can tell you because you didn't post the real names so noone
can look at them and tell you.
>thank you very much for your time. i know this must be a newbies question
>and many people will ignore my inexperienced question. but if someone
>could please point out some reading materials or directions, i would
>really appreciate it.
Read DNS and BIND as well as the Cookbook by Cricket Liu.
Danny
>-Josh
More information about the bind-users
mailing list