Re: DNS Verification
- From: "Ace Fekay [MVP]" <PleaseSubstituteMyActualFirstName&LastNameHere@xxxxxxxxxxx>
- Date: Mon, 28 Nov 2005 23:50:12 -0500
In news:1131152602.910374.21660@xxxxxxxxxxxxxxxxxxxxxxxxxxxx,
Tommy <tlpitch@xxxxxxxxxxxxx> made this post, which I then commented about
below:
> Can someone with more experience with DNS tell me if I've got this
> configured correctly? I want my domain to have ns1.mdomain and I have
> another name server for a secondary.
>
> Thanks in advanced!
>
> ;
> ; Database file mydomain.comdns for mydomain zone.
> ; Zone version: 45
> ;
>
> @ IN SOA www.mydomain.com
> hostmaster.mydomain.com (
> 45 ; serial number
> 900 ; refresh
> 600 ; retry
> 86400 ; expire
> 3600 ) ; default TTL
>
> ;
> ; Zone NS records
> ;
>
> @ NS server14.mydomain.com
> @ NS ns1.mydomain.com
>
> ;
> ; Zone records
> ;
>
> @ MX 10 server15.mydomain.com
> afnet CNAME server14.mydomain.com
> blackberry01 CNAME server6.mydomain.com
> employees CNAME server14.mydomain.com
> fppix02 A 209.10.3.178
> ftp CNAME mydomain.com
> mail MX 10 server15.mydomain.com
> neserver18 A 209.10.3.187
> server11 A 209.10.3.182
> server14 A 209.10.3.183
> server15 A 209.10.3.184
> MX 10 server15.mydomain.com
> server6 A 209.10.3.180
> server9 A 209.10.3.181
> ns1 A 209.10.3.183
> old A 209.15.171.80
> pcp A 209.10.3.74
> sql1 A 209.10.3.72
> www CNAME mydomain.com
You have too many MX records but all *seem* to be pointing to the same
machine. This doesn't make sense.
> mail MX 10 server15.mydomain.com
> MX 10 server15.mydomain.com
I would just create a 'mail' A record pointing to 209.10.3.184, then create
an MX record, leaving the hostname portion blank, and set the name in the
bottom box to mail.mydomain.com.
Example:
I would delete:
> MX 10 server15.mydomain.com
> mail MX 10 server15.mydomain.com
> @ MX 10 server15.mydomain.com
Then I would create these two records ONLY (since you only have one mail
server):
mail A 209.10.3.184
@ MX mail.mydomain.com
You have too many CNAMES. I try to avoid them. You can easily just create A
records with the different host names pointing to whatever IP address they
need to go to. This eliminates extra resolution steps.
Example:
Instead of:
blackberry01 CNAME server6.mydomain.com
You can create:
blackberry A 209.10.3.180
Do the same for afnet, employees, ftp, etc.
I don't see a blank domain record, which should look like this:
@ A TheIpAddressOfYourWebserver
www A TheIpAddressOfYourWebserver
The blank record allows connections by using http://mydomain.com, without
the www, as long as the hostheader is set properly in the website properties
for both mydomain.com and www.mydomain.com.
Plus, if 209.10.3.184 is your mail server, there is no reverse entry for it.
That will stop many mail systems running spam control software.
And as Herb said, use the GUI, it's easier.
If you want further info and to test it, go to www.dnsstuff.com and
www.dnsreport.com. If you like, post the actual name and we can test it.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
If this post is viewed at a non-Microsoft community website, and you were to
respond to it through that community's website, I may not see your reply
unless that website posts replies back to the original Microsoft forum.
Therefore, please direct all replies ONLY to the Microsoft public newsgroup
this thread originated in so all can benefit or ensure the web community
posts it back to the original forum.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Windows Server Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations.
=================================
.
- References:
- DNS Verification
- From: Tommy
- DNS Verification
- Prev by Date: Re: DNS Verification
- Next by Date: restricting clients queries
- Previous by thread: Re: DNS Verification
- Next by thread: Programming a DNS Server
- Index(es):
Relevant Pages
|
