ASL beta (as well as 3.2x) uses BIND to perform the DNS forwarding duties, right? I'm a novice to configuring BIND, so bear with me. What edits, and where, do I have to make to the named.conf-default file and what new files do I need to create in ./zones? It seems like such a waste to have a whole machine for DNS when I only have about 8 machines to work with. for example: what would I have to do to be able to ping machine1.private.home and have ASL return the IP of that machine?
I also would like to know this and more about DNS.I thought that it was not posible with asl to configure DNS (just forwarding/proxie)?Or da you work with some other then asl v.3.2? I used to work with other linux stuff and that worked just with editing the host.conf and hosts file.
Astaro 3.2 uses BIND. It can be configured in many ways. I was looking for someone's input on how to hack Astaros configuration of BIND so it will serve DNS requests for my internal network and forward all other requests to my nameservers I enter in the front end.
IMHO (& as a linux novice), unless you know Astaro inside out, it would be far safer to get that old Pentium out of your store room & make it into your mail/dns/dhcp/ntp... server.
When I first started using ASL, I hacked 2.x to make it both a dhcp client (essential) and dhcp server (convenient), & was about to try to make it a dns server.
I soon got the impression from this & other security forums, that anytime you hack your firewall without fully knowing what effect your hacking will have on the system overall, you could be making yourself really vulnerable & not know it until it's too late. That's when I picked up an old IBM PC300GL for $11 & used Mandrake to make it into my dhcp, dns ... server. (Still had to leave the dhcpc hack on ASL until a working 3.x showed up.)
You could argue that every network is more secure/reliable if each service is run on a machine by itself. Astaro isn't that kind of product. If it were a large corporate system only, then it wouldn't have dhcpc or dhcpd, smtp relay, etc. ASL is made with services built in. I don't see it as unreasonable to ask about including more functionality. ASL would only be serving DNS requests from it's internal network. This is the Hackers/Beta forum is it not?
I am sorry to ask this. I am realy a novice in the linux en dns field. Would it be possible to write or post a full tutorial or a thread with some explaining so that everyone that is not so smart could understand and do this @ hist asl box.
I think many people would apreciate this. I hope we will hear from you.
