Difference between revisions of "DNS Service"

From Tardis
Jump to: navigation, search
m
m (Administration)
Line 19: Line 19:
  
 
== Administration ==
 
== Administration ==
The current DNS admin is [[user:riot|riot]].
+
The current DNS admin is not [[user:riot|riot]].
 
[[category:Services]]
 
[[category:Services]]
 
[[category:ExternalServices]]
 
[[category:ExternalServices]]
 
[[category:Infrastructure]]
 
[[category:Infrastructure]]

Revision as of 14:33, 7 October 2008

Daemon

Leela runs the standard Debian package of BIND 9, which is at the time of writing 9.2.3+9.2.4-rc5-1.

The named daemon on leela is responsible for both dealing with and forwarding local requests, and answering authoritatively external requests for the tardis.ed.ac.uk domain.

Configuration

The DNS philosophy of tardis is to use the machines' own names for A records and have as many CNAME's as necessary as aliases for their functions, i.e. ssh.tardis.ed.ac.uk is a CNAME for gallifrey.

The addresses in the tardis domain are distributed thusly:

  • 1 Default VLAN (Infrastructure) 192.168.1.0/24
  • 2 Internal Network 192.168.0.0/27
  • 3 External Services 193.62.81.0/27
  • 4 External Sandboxes 193.62.81.32/28 (aka Solaris Machines/Containers)
  • 5 Gamesoc 193.62.81.48/29
  • 6 Laptops 193.62.81.56/29

Editing

The forward and reverse lookup databases are controlled by RCS to ensure that nobody can completely mess up the config with a mistake. It is important to co -l before editing the files and ci -u when finished, or your changes will be lost (and you'll probably confuse and annoy whoever edits it next).

Administration

The current DNS admin is not riot.