Updating for online delivery
== Basic Services ==
Setup an Internet email system for your assigned DNS Domain using the Virtual Machines in your Virtual Network. Your Internet email system must provide the following functions:
* A SMTP email server (running postfix) that is capable of receiving and sending emails for users in your domain.
** Users in your domain must be able to send emails to users in the same domain and users in other students' domains in the class.** Users in your domain must be able to receive emails from other email users (both in your domain and from other domains).
<!--* An IMAP Access Agent (running dovecot) allowing users in your domain to remotely access their mail.
** Users in your domain must be able to access/manage their mail box using IMAP(s) clients.-->
* You email server must be configured to check the SPF (sender policy framework) of other domains for incoming email and reject emails that are violating the sender policy.
* Configure your
DNS server to implement and provide the SPF protection for your assignment domain.* Configure your DNS server to implement and provide the DNSSEC records for your assignment domain.**Provide the administrator for your lab domain ( that's you) with a copy of the DS key for your assignment domain. If you have not already done so, include the glue record as well . **Provide the administrator for the ops domain (your professor) with a copy of the DS key for your lab domain. If you have not already done so, include the glue record as well. This, combined with the step above will establish a chain of trust between your assignment network, your lab network and the rest of the ops domain.**Configure a DNSSEC Trust Anchor so that your co-nfs server considers the .ops server to already be authenticated . I will provide the key necessary for this through blackboard.
== Supporting Services ==
You need the following services and network infrastructure to support your Internet Email System (some of which should have been configured in assignment 1):
* Pri-dns must be the primary DNS name server for your assignment domain with the proper MX record(s), SPF record(s), A record(s), and PTR record(s). It must be queriable by any machine.
**Provide the administrator of the .ops domain
(your professor) with glue records for your domain.* Co-nfs must be a caching DNS server, accessible to machines in your networks, that will forward traffic to the server for the ops domain ( 172.16.1.1), then to your rns-ldap.
* Rns-ldap must be a forwarding server only.
**It must only be queriable by your co-nfs.
**It must have a copy of the root-hints zone.