Re: Bind Redundant master server for single zone file.

To: Ian Forbes <iforbes@zsd.co.za>, debian-isp@lists.debian.org
Subject: Re: Bind Redundant master server for single zone file.
From: "Thomas Goirand (GPLHost)" <nospam.thomas@goirand.fr>
Date: Fri, 24 Jun 2005 15:16:58 +0200
Message-id: <[🔎] 42BC07CA.9070705@goirand.fr>
In-reply-to: <[🔎] 200506231929.45076.iforbes@zsd.co.za>
References: <[🔎] 200506221529.55485.iforbes@zsd.co.za> <[🔎] 200506231929.45076.iforbes@zsd.co.za>

Hi !


Ian Forbes wrote:

On Wednesday 22 June 2005 15:29, Ian Forbes wrote:
Is it possible to setup two bind servers such that they can both be
"master" for the same zone, and update each other as a master would
update a slave when ever the zone file is modified?
After much thought and investigation (and not too much sleep) I havecome up with three options:
OPTION 1: The "right" way.
[...]
OPTION 2: The "kludge" way. (It should work - particularly as theservers will not go down very often - but it won't scale)
- Set up two "master" servers using bind.
- Modify Dhis to run "nsupdate" to update both servers each time an IPis updated. It can be set to use tcp instead of udp for reliability.- Monitor the return codes from nsupdate, and set a "dirty" flag if theupdate fails. This normally means the other server, or the network isdown or the other server has crashed.- Run a period script which checks for the presence of a "dirty" flag,that the other server is and that it is ping-able.- When all of these test are true, restart the Dhis server.- This will force all clients to log in again and resubmit their latestIP's, which in turn will be propergated onto both servers. (This is notas expensive as it seems as each client runs a "ping" process everyminute anyhow.)
OPTION 3 <grin>:[...]

Option 4:

- setup 3 Domain Technologie Control server, go in "Backup NS and MX" ofthe master, and setup your slaves DNS servers authorization (login,password and ip check)- go in the "Backup NS and MX" of all your slave servers, setup URL ofthe master server (with login and password)

- that's it, you are done.

More or less it's what you say in option 2, except that it does scale.

If you like, you can do that on both ways, so when you add a domain onserver2, it's added to server 1 and the opposite way around too. Serverdomain listing is exchanged using HTTPS, ip check, and triggered each 10minutes (a server informs another one that domain listing has updatedand that it should invalidate it's cache). If you do it the right way,your main server will have DNS queries only from your outside world(that's what I did, so my bind on my main server replies "unauthorizedquery source" for all the outgoing UDP requests).


Hope that helps...

   Thomas

callto://+1.(302)-213-1611
http://www.gplhost.com
GPLHost:>_ Open source hosting worldwide
Webspaces featuring GPL control panel
Locations in Florida and Singapore

Reply to:

References:
- Bind Redundant master server for single zone file.
  - From: Ian Forbes <iforbes@zsd.co.za>
- Re: Bind Redundant master server for single zone file.
  - From: Ian Forbes <iforbes@zsd.co.za>

Prev by Date: Re: Bind Redundant master server for single zone file.
Next by Date: Just check this out ;)
Previous by thread: Re: Bind Redundant master server for single zone file.
Next by thread: Just check this out ;)
Index(es):
- Date
- Thread