Changes

Jump to: navigation, search

OPS535 A2 201603

72 bytes removed, 19:04, 3 November 2020
m
Updating for online delivery
=Specification=
== Basic Services ==
Setup an Internet email system for your assigned DNS assignment Domain using the Virtual Machines in your assignment Virtual Network. Your Internet email system must provide the following functions:
* A SMTP email server (running postfix) that is capable of receiving and sending emails for users in your domain.
<!--** Users in your domain must be able to send emails to users in the same domain and users in other students' domains in the class.** Users in your domain must be able to receive emails from other email users (both in your domain and from other domains).-->** Users in your assignment domain must be able to send emails to users in the same domain and users in your lab domain (in theory, this would include any other domain).** Users in your domain must be able to receive emails from other email users (both in your lab domain and from other domains).
<!--* An IMAP Access Agent (running dovecot) allowing users in your domain to remotely access their mail.
** Users in your domain must be able to access/manage their mail box using IMAP(s) clients.-->
* You email server must be configured to check the SPF (sender policy framework) of other domains for incoming email and reject emails that are violating the sender policy.
* Configure your DNS pri-dns server to implement and provide the SPF protection for your assignment domain.* Configure your DNS pri-dns server to implement and provide the DNSSEC records for your assignment domain.**Provide the administrator for your lab top domain (that's youThe one on your host) with a copy of the DS key for your assignment domain. If you have not already done so, include the glue record as well.**Provide the administrator for the ops domain (your professor) with a copy of the DS key for your lab domain. If you have not already done so, include the glue record as well. This, combined with the step above will establish a chain of trust between your assignment network, your lab network and the rest of the ops domain.**Configure a DNSSEC Trust Anchor so that your co-nfs server considers your top-domain server (the one with the <yourname>.ops server zone) to already be authenticated. I will provide the key necessary for this through blackboard.
== Supporting Services ==
You need the following services and network infrastructure to support your Internet Email System (some of which should have been configured in assignment 1):
* Pri-dns must be the primary DNS name server for your assignment domain with the proper MX record(s), SPF record(s), A record(s), and PTR record(s). It must be queriable by any machine.
**Provide the administrator of the <yourname>.ops domain (your professor) with glue records for your domain.* Co-nfs must be a caching DNS server, accessible to machines in your networks, that will forward traffic to the server for the <yourname>.ops domain (172.16.1.1your host), then to your rns-ldap.
* Rns-ldap must be a forwarding server only.
**It must only be queriable by your co-nfs.
**It must have a copy of the root-hints zone.
* Proper static network routes to and from other Email servers in the Lab.
<!--
729
edits

Navigation menu