Toolserver:Admin:DNS

This page was moved from the Toolserver wiki.
Toolserver has been replaced by Toolforge. As such, the instructions here may no longer work, but may still be of historical interest.
Please help by updating examples, links, template links, etc. If a page is still relevant, move it to a normal title and leave a redirect.

Recursive DNS

edit

The DNS recursor is ha-bind-recursor.esi.toolserver.org, which runs on the HA cluster in the bind-recursor resource group. This handles recursive queries from internal clients.

Authoritative DNS

edit

We run auth DNS servers for these domains:

  • toolserver.org
  • wita.toolserver.org
  • 0.23.10.in-addr.arpa (reverse DNS for 10.23.0/24)
  • 1.24.10.in-addr.arpa (reverse DNS for 10.24.1/24)
  • 192-223.174.198.91.in-addr.arpa (reverse DNS for 91.198.174.192/27)

Except for wita.toolserver.org, these are all served by BIND. The primary server is a.ns.toolserver.org (turnera); secondaries are b.ns.toolserver.org (damiana) and c.ns.toolserver.org (amaranth).

The zone files are in /etc/opt/ts/namedb/master/ on turnera. After editing a zone, reload it (/opt/ts/sbin/rndc reload toolserver.org) or restart named (svcadm restart named).

toolserver.org is DNSSEC-signed. This means that after editing the zone file, you need to run zonesigner toolserver.org before you reload the zone. If you don't do this, your changes will not appear.

Category:Admin:Software