ASL beta (as well as 3.2x) uses BIND to perform the DNS forwarding duties, right? I'm a novice to configuring BIND, so bear with me. What edits, and where, do I have to make to the named.conf-default file and what new files do I need to create in ./zones? It seems like such a waste to have a whole machine for DNS when I only have about 8 machines to work with. for example: what would I have to do to be able to ping machine1.private.home and have ASL return the IP of that machine?
I also would like to know this and more about DNS.I thought that it was not posible with asl to configure DNS (just forwarding/proxie)?Or da you work with some other then asl v.3.2? I used to work with other linux stuff and that worked just with editing the host.conf and hosts file.
Astaro 3.2 uses BIND. It can be configured in many ways. I was looking for someone's input on how to hack Astaros configuration of BIND so it will serve DNS requests for my internal network and forward all other requests to my nameservers I enter in the front end.
Astaro 3.2 uses BIND. It can be configured in many ways. I was looking for someone's input on how to hack Astaros configuration of BIND so it will serve DNS requests for my internal network and forward all other requests to my nameservers I enter in the front end.
IMHO (& as a linux novice), unless you know Astaro inside out, it would be far safer to get that old Pentium out of your store room & make it into your mail/dns/dhcp/ntp... server.
When I first started using ASL, I hacked 2.x to make it both a dhcp client (essential) and dhcp server (convenient), & was about to try to make it a dns server.
I soon got the impression from this & other security forums, that anytime you hack your firewall without fully knowing what effect your hacking will have on the system overall, you could be making yourself really vulnerable & not know it until it's too late. That's when I picked up an old IBM PC300GL for $11 & used Mandrake to make it into my dhcp, dns ... server. (Still had to leave the dhcpc hack on ASL until a working 3.x showed up.)
You could argue that every network is more secure/reliable if each service is run on a machine by itself. Astaro isn't that kind of product. If it were a large corporate system only, then it wouldn't have dhcpc or dhcpd, smtp relay, etc. ASL is made with services built in. I don't see it as unreasonable to ask about including more functionality. ASL would only be serving DNS requests from it's internal network. This is the Hackers/Beta forum is it not?
I am sorry to ask this. I am realy a novice in the linux en dns field. Would it be possible to write or post a full tutorial or a thread with some explaining so that everyone that is not so smart could understand and do this @ hist asl box.
I think many people would apreciate this. I hope we will hear from you.
There may be better ways, but this was how I solved it.
1. Edit the templates to match what you need. 2. Create a new folder called my-zones/ in the same directory as the asl zones/ is. (ASL removes unknown files on restart so adding them to the zones/ directory would not work) 3. Add your zone files into my-zones/ just like normal bind. 4. Restart firewall, middleware or disable-enable named from webmin
The thing to remember is that conf files will be reset on every restart,etc.. so you have to edit the templates where possible, and add new directory files if needed.
Hi all, this is only a post to keep this task alive and ask for a statement of astaro, maybe you could add dns-server to webadmin of V5. ASL is not only useable as firewall, if this feature would be in asl then i put two asl-boxes yust as a high secure dns-server into my dmz and i mean not at home i mean this as a enterprise user who will pay for the license.
thanks and merry xmas from firebear
7 x enterprise license, 1 x office license, 2 x home license
