Changes

Jump to: navigation, search

SRA840 Lab4

5,263 bytes added, 22:41, 16 July 2012
no edit summary
===Gregory Milton Paiva Neto=== 1. What is the version number of the installed BIND package? ''bind94-9.4.2.2'' 2. What is bind tool called "named-checkconf" use for? To check the configuration file for syntax errors. 3. What are the names of all the other tools in the bind package? /usr/bin/dig/usr/bin/host/usr/bin/nslookup/usr/bin/nsupdate 4. We have used the dig and nslookup bind utilities in this lab, what are the other two bind utilities and what are they for? * Package bind - Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server  /etc/logrotate.d/named - log file/usr/sbin/dns-keygen /usr/sbin/dnssec-keygen /usr/sbin/dnssec-signzone /usr/sbin/lwresd /usr/sbin/named-bootconf /usr/sbin/named-checkconf /usr/sbin/named-checkzone /usr/sbin/named-compilezone /usr/sbin/rndc /usr/sbin/rndc-confgen  * Package bind-chroot - A chroot runtime environment for the ISC BIND DNS server  5. What is the information provided by the "service named status" command? version: 9.5.1-P2-RedHat-9.5.1-2.P2.fc10number of zones: 19debug level: 0xfers running: 0xfers deferred: 0soa queries in progress: 0query logging is ONrecursive clients: 0/0/1000tcp clients: 0/100server is up and runningnamed (pid 2113) is running... 6. Will the "version" statement in the "/etc/named.conf" file change the output of the "service named status" command? No, it will not change. 7. The SOA resource record in a zone file contains 5 numbers, what is the usage of the last one?  This is how long a remote nameserver can cache negative responses about the zone, answers that say that a particular domain name or the type of data sought for a particular domain name doesn't exist. 8. Linux x BSD The main difference between Bind on FreeBSD and Bind on Linux is the path of the files or how to start the server on boot time, but major things are the same. Like the content of the configuration files. ===Katherine Masseau===
Differences in DNS between freeBSD and Linux:
Forwarding:
The forwarding DNS may seem like an unusual option at first - it stores no records, and instead only forwards requests to a series of other DNS servers of which it is aware. In most cases, it is not a terribly useful option. There are a small number of cases, however, where it can be useful, such as where the local DNS server does not support recursion but a remote, forwarding DNS server does - in this case, using the forwarding DNS server can reduce the ammount of traffic across the network.
 
===Nestor CHAN===
'''Differences'''
I think the most difference of DNS between Linux and BSD is the path. Linus's named path is /var/named/ when FreeBSD uses /var/named/etc/named/. And the start up binary files are also stored in /etc/sbin/named
There Actually, there are not much different of name server between linux and BSD. Since BIND is an open source package, and linux and BSD are using it. The way to configure name server are the same too. Althought Linux and BSD save config files in different location since they have different file structure.
1. What is the version number of the installed BIND package?
Answer:
9.5.0-P2(Fedora10) 9.4.2.2(FreeBSD7.1)
2. What is bind tool called "named-checkconf" use for?
4. What are the names of all the other tools in the bind package?
Answer:
 (Fedora10) /usr/sbin/dns-keygen /usr/sbin/dnssec-keygen /usr/sbin/dnssec-signzone /usr/sbin/lwresd /usr/sbin/named /usr/sbin/named-bootconf /usr/sbin/named-checkconf /usr/sbin/named-checkzone /usr/sbin/named-compilezone /usr/sbin/rndc /usr/sbin/rndc-confgen (FreeBSD7) /usr/bin/dig /usr/bin/host /usr/bin/nslookup /usr/bin/nsupdate
5. We have used the dig and nslookup bind utilities in this lab, what are the other two bind utilities and what are they for?
Q: What is the purpose of the "host" command ? Give an example of its use.
A: Host is a simple tool to perform DNS lookups.e.g.
[root@localhost ~]# host -v ns.lux.on.ca 192.168.2.16
Trying "ns.lux.on.ca"
lux.on.ca. 10800 IN SOA ns.lux.on.ca. root.ns.lux.on.ca. 0 86400 3600 604800 10800
Received 71 bytes from 192.168.2.16#53 in 17 ms
 
Q: What is the purpose of the "nslookup" command ? Give an example of its use.
 
A: "nslookup" is a program to query Internet Domain Name servers.
e.g.
[root@localhost ~]# nslookup
> server 192.168.2.16
Default server: 192.168.2.16
Address: 192.168.2.16#53
> set debug
> ns.lux.on.ca
Server: 192.168.2.16
Address: 192.168.2.16#53
------------
QUESTIONS:
ns.lux.on.ca, type = A, class = IN
ANSWERS:
-> ns.lux.on.ca
internet address = 142.204.141.75
AUTHORITY RECORDS:
-> lux.on.ca
nameserver = ns.lux.on.ca.lux.on.ca.
ADDITIONAL RECORDS:
------------
Name: ns.lux.on.ca
Address: 142.204.141.75
>
 
Q: What port does DNS use ?
A: 53
 
==Varinder Singh==
 
'''Configuration file Location'''
<pre>
 
Fedora FreeBSD
 
/etc/named.conf /etc/namedb/named.conf
 
/var/named/chroot/etc/ /var/chroot/named/
 
 
Bind Service Location and start
 
chkconfig named on edit /etc/rc.conf
 
/etc/rc.d/init.d/ named_enable="YES"
 
service named start /etc/rc.d/named start
</pre>
 
'''Stealth Name Server:'''
A stealth server is defined as being a name server which does not appear in any publicly visible NS Record for the domain. The stealth server is normally used in a configuration called Split Severs which can be roughly defined as having the following characteristics:
 
1.The organisation needs a public DNS to enable access to its public services e.g. web, mail ftp etc..
2.The organisation does not want the world to see any of its internal hosts either by interrogation (query or zone transfer) or should the DNS service be compromised.
 
'''Configuration file for slave server, Caching only Name server and Authoritative only Name Server'''
// Slaver server configuration file
zone "varinder.net" {
type slave;
file "slave/varinder.net";
allow-transfer { localhost; };
allow-update { key rndc-key};
};
// Caching only Name server configuration file
zone "." {
type hint;
file "cache/varinder.net";
};
// options section for Authoritative Name Server
// recursion no = limits caching
options {
directory "/var/named";
version "not currently available";
recursion no;
};

Navigation menu