From owner-freebsd-questions@FreeBSD.ORG Thu Sep 11 00:08:55 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CC5DA106567A for ; Thu, 11 Sep 2008 00:08:55 +0000 (UTC) (envelope-from af300wsm@gmail.com) Received: from rv-out-0506.google.com (rv-out-0506.google.com [209.85.198.239]) by mx1.freebsd.org (Postfix) with ESMTP id 9C1AB8FC1B for ; Thu, 11 Sep 2008 00:08:55 +0000 (UTC) (envelope-from af300wsm@gmail.com) Received: by rv-out-0506.google.com with SMTP id b25so109195rvf.43 for ; Wed, 10 Sep 2008 17:08:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=Am/7tOFC4KxRPoPBNYGMRLL/1orWR3XLfnHJCcK2m1w=; b=pQlUF5IjdJKiyP9dp80P0mntI6Pjzu2V5krfIpctxH4Sk2/6GtWG260Tpo+1oX+7UM fkKEah6sILn+6G3gdhnD5VtencRZl4vUMROIkik5z5x5mOYy68jtYXInpqcaFUIkKFsW ujCxPcndkNPq4HVb3aCCP/T1GR8ZOAryv6mmg= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; b=gM+Oou3eX8iNtnwLk+e30KIYPwR3Kus2cncBvp0sj4vXp71vHrTobTi9TjVHh5nmZr OlNu9RYxLmQnXKy7sth/6+sdR893HyDUOyPf4HkMo+sHhklQDpvKh0Gfg0pFamAn+cPu R6kYTo23fbcPYwodtL/vn5yW5Nt7CqztrlO3g= Received: by 10.140.191.14 with SMTP id o14mr1250350rvf.247.1221091735272; Wed, 10 Sep 2008 17:08:55 -0700 (PDT) Received: from ?192.168.0.2? ( [71.221.160.38]) by mx.google.com with ESMTPS id f21sm13210350rvb.5.2008.09.10.17.08.52 (version=TLSv1/SSLv3 cipher=RC4-MD5); Wed, 10 Sep 2008 17:08:53 -0700 (PDT) Message-ID: <48C86136.7040502@gmail.com> Date: Wed, 10 Sep 2008 18:07:18 -0600 From: Andrew Falanga User-Agent: Thunderbird 2.0.0.16 (Windows/20080708) MIME-Version: 1.0 To: Patrick Mahan References: <200809061928.28539.af300wsm@gmail.com> <48C6ADE7.8060608@mahan.org> In-Reply-To: <48C6ADE7.8060608@mahan.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Questions Subject: Re: mail server DNS configuration questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Sep 2008 00:08:55 -0000 Patrick Mahan wrote: > > > Andrew Falanga presented these words - circa 9/6/08 6:28 PM-> >> Hi, >> >> Well, my clients at church are still having issues and after working >> with George, a respondant to my original questions, I think that >> most, if not all, of my problems are related to DNS and how we've got >> it improperly configured. >> >> First, a crude drawing of how our mail server exists in the world: >> >> 192.168.2.x/24 72.24.23.252 "lot's of networks" >> Private Network <--> CableOne <--> Internet >> >> Now, our mail server's IP is 192.168.2.23. On the router, he (the >> person at whose house the mail server is) has IP forwarding setup so >> that mail get's sent to our FreeBSD machine. Using dig, here's the >> responses: >> >> (from my FBSD machine at home, not the server) >> [/usr/home/andy] >> -> dig +short -t MX whitneybaptist.org >> 10 mail.whitneybaptist.org. >> [/usr/home/andy] >> -> dig +short -t A whitneybaptist.org >> 72.24.34.252 >> [/usr/home/andy] >> -> dig +short -x 72.24.34.252 >> 34-252.72-24-cpe.cableone.net. >> >> (from the church FBSD machine) >> [/home/afalanga] >> -> hostname >> whitbap >> [/home/afalanga] >> -> ifconfig fxp0 >> fxp0: flags=8843 mtu 1500 >> options=8 >> inet 192.168.2.23 netmask 0xffffff00 broadcast 255.255.255.255 >> ether 00:d0:b7:74:87:48 >> media: Ethernet autoselect (100baseTX ) >> status: active >> [/home/afalanga] >> -> cat /etc/resolv.conf >> search McCutchanLAN >> nameserver 192.168.2.1 >> >> >> It doesn't take a rocket scientist, or a computer scientist, to >> figure out we've got DNS issues. I'm thinking that I should setup a >> domain within the 192.168.2.0/24 network on this box. I've done this >> before, at work. The question I've got is I've never actually >> integrated a domain like this to a domain on the Internet. I'm >> thinking that we'll setup something like: internal.whitneybaptist.org >> with hosts in that sub-domain. >> > > > First, what are you trying to accomplish with the internal DNS? Make > it easier to > resolve machines in the 192.168.2.0 network? Allow lookups external > of the > 192.168.2.0 network? What machine is 'mail.whitneybaptist.com'? Is > it on the > 192.168.2.0 network? Is it reachable from the Internet? > > Who is the owner of whitneybaptist.org DNS zone? I show the following > NS servers: > > Patrick@widowmaker-~/src/MPS/DocDownload 140 > dig +short -t NS > whitneybaptist.org > ns1.domaindirect.com. > ns2.domaindirect.com. > ns3.domaindirect.com. > > Which is administered by tucows.com (Tucows, Inc) a seller of DNS > services. > >> So, what would my DNS tables need to look like to make this happen. >> Also, to any knowledgable souls here, what RFCs address these issues? >> > > You can read the RFC's if you want, but you would be better served to > purchase > "DNS and BIND, Fourth Edition, by Paul Albitz & Cricket Liu" to learn > how to > administer DNS. > > Patrick It's been quite some time since I last looked at that book. It was at edition 3 then, and owned by the company I worked for so I didn't get to keep it. I'll have to look into it. Andy