DNS Server Manual
2 HDE Controller X DNS Server Manual
Please note that this user manual may be subjected to change due to product upgrades without any prior notice. HDE and HDE Controller is a registered trademark of HDE, Inc. All group names and product names listed in this manual are registered trademarks to each of the groups and products respectively. This manual may only be copied by printing in PDF format. Any other forms of copying, transferring, loaning, adapting, translating, or public distribution of this manual is not allowed. Reprinting or reproducing this manual without HDE's permission is strictly forbidden. 2011 HDE, Inc. 3
How to Read this Manual About this Manual The HDE Controller Installation Manual provides users with instructions to installing OS and the HDE Controller (this Product) as well as steps for configuring the initial settings of the Product. Annotations are provided for any matters requiring special attention and phrase supplements. Any matters which require special attention are marked with this "Alert" icon in bold frame. Contents which provide useful reference for using HDE Controller are marked with this "Hint" icon. 4 HDE Controller X DNS Server Manual
HDE Controller X DNS Server
1. Basic Settings A DNS server manages the correspondence between the IP address and the name of the computer. For example, a DNS server will notify the user machine the IP address corresponding to the FQDN of the URL address the user enters. It is crucial to configure the DNS server settings correctly as any incorrect configuration may prevent any external access even when the IP address and domain name is specified correctly. Configure the general settings of the DNS server. Select the "DNS Server" - "Basic Settings" menu. Under normal condition, please set "Allowed Hosts to Query" to "All Hosts" and "Allowed Hosts to Transfer Zones" to "Address Specified Manually" and specify the IP address of the secondary DNS server and the network belonging to the same segment. The "Allowed Hosts to Query Recursively" option is usually used for identical networks such as LAN. Users are not required to change the settings for the other items on this screen under normal conditions. 6 HDE Controller X DNS Server Manual
Show Versions of the DNS Server Please check the "Hidden" box if you do not wish to show any version information of the BIND provided by your DNS server. Each of the following parameters will be configured: Inquiry to remote/dns server: query-source IP address of the forward target: forwarders Allowed Hosts to Query: allow-query Allowed Hosts to Transfer Zones: allow-transfer Allowed Hosts to Query Recursively: allow-recursion If receiving specifications from the provider check the "Forward queries" box and set "Forwarding Type" to "first" and "Forwarding IP Address" to that of the DNS server specified by the provider. This configuration will enhance the performance of the DNS inquiries. Click the Configure button to save your settings. DNS Server 7
2. Domain Information Management Edit Domain Information In the Manage Zone menu, click the "Edit" button of a domain name with the Zone Type set to "master" to access the following edit screen. Please only change the content of this screen when necessary. The hostname of the primary name server that is authoritative for this zone Specify the name of the master server (in FQDN) which contains the original information of the zone file. Not required to be changed under normal circumstances. Administrator s E-mail Address Specify the mail address of the administrator of this zone. Hosts permitted to inquire Specify the hosts permitted to make inquiries to this zone. Enter the IP address or the network which the host belongs to in CIDR format. Select "any" if you wish to allow all hosts and "none" if you wish to deny all hosts. 8 HDE Controller X DNS Server Manual
Hosts permitted to transfer zones Specify the hosts permitted to forward the zone information on this zone. Enter the IP address or the network which the host belongs to in CIDR format. Select "any" if you wish to allow all hosts and "none" if you wish to deny all hosts. Also Notify Specify the IP Address of the slave server which will be notified of the update information of the zone data. Separate each entry with a comma if multiple entries. TTL Configure the Time-To-Live (TTL) setting. Specify the time (in seconds) to keep the record information in the client cache. Refresh Specify the interval by second(s) to check the Serial number of this zone by slave server. Zone information will be transferred to the slave server when the Serial number is modified. Modification on the master server will be transferred immediately when this value is small however it creates much more network traffic. Specify the time interval by second(s) to check the serial number of this zone by a slave server. Zone information will be transferred to the slave server when the serial number is modified. By setting this value small, modifications made on the master server will be immediately transferred to the slave server at the cost of increased network traffic. The default value is set to 10800 seconds (3 hours). No need to be change under normal circumstances. DNS Server 9
Retry Specify the time interval by second(s) to retry refreshing the data if still unable to connect to the master server after the refresh period has passed. The default value is set to 3600 seconds (1 hour). No need to be change under normal circumstances. Expire Specify the period by second(s) for while they can use the copy of the zone information already fetched when the slave servers cannot connect to the master server. After this period, the server will not respond to the queries for the zone and discard the zone information if they still cannot connect to the master server. However, trying to connect to the master server will go on. This value must be a big number more than Retry and Minimum TTL. Specify the time period by second(s) for which the slave server may use the currently obtained zone information if the slave server continues to fail to connect to the master server. If the configured time period has passed, the current zone information will be discarded and any inquiries made afterwards will not be responded. However, the slave server will still be able to attempt to establish connections with the master server. The value set for this field must be greater than that of "Retry" and the amount of time which negative caches (explained later) are stored. The default value is set to 1209600 seconds (14 days). No need to be change under normal circumstances. Minimum TTL Specify the time (in seconds) to keep negative caches. A negative cache refers to the cache which stores failed inquiries as a result of the error "Domain name does not exist". The default value is set to 86400 seconds (24 hours). No need to be change under normal circumstances. 10 HDE Controller X DNS Server Manual
Delete Domain Information To delete an existing domain, click on the "Delete" button in the "Action" column of the domain list, then click the "Configure" button to delete the domain. DNS Server 11
3. Add Domain This section will explain how to add a new domain. Please note that in order to use the domains created in this menu, you must make sure you have obtained authority from higher rank server to check if the DNS server is correctly registered in the registrar. Please check if the DNS server is correctly registered n the registrar which the domain is registered to. External clients will not be able to use any configurations set in this setting menu if the DNS server is not registered correctly. This will lead to problems such as users not being able to receive e-mails or cannot find specific Websites, etc. Click the "DNS Server" - "Add Domain" menu to access the configuration screen. The server configured in this menu will be the primary master server. Please add slave servers in the "Add Slave" menu. Here we will work with an example which constructs the domain "example.com" on the server with the IP address "202.211.133.181". Enter the network address used to release the new domain to the public in "Network Address". Please select the network which the domain you wish to create belongs to. 12 HDE Controller X DNS Server Manual
Select "Other Network" and enter the global IP address space if the network space of the server machine and the domain space you wish to create is not the same. In "Network Type", select and enter the format of the reverse mapping zone. If your network or domain does not have permission to perform reverse mapping, you may select any of the options for this item. Select "LAN" if you are using LAN and select your leased line format from the pull-down menu if you are using a leased line. Please refer to the online hint regarding the formats that are selectable in the pull-down menu. If you are using any other leased line format, please select "Other Leased Line" and specify in "Reverse Mapping Prefix". In "Domain Name", enter the name of the domain you wish to create. In "Administrator's E-mail Address", enter the DNS administrator's e-mail address in "Administrator's E-mail Address". Addresses such as "hostmaster@domainname" are often used. In "Secondary DNS DNS Server", enter the host name of the server (in FQDN) which supports the management of this zone. Enter the specified host name if the secondary DNS server is specified by the provider. You may omit this field if you are not using any secondary DNS server. If you are using a secondary DNS server, enter the host name and IP address in "Secondary DNS DNS Server IP Address". If the "Create a reverse zone" box is checked, Reverse Mapping Zones will be created automatically. Uncheck the checkbox if you wish to create only the Forwarding Zone. After you have completed your entries, click the "Next" button to proceed. DNS Server 13
Add the host to be configured to the new domain. Select the "Record Type" and enter the host name in "Host Name" and IP address in "Value" then click the "Add" button to add a new record which will be displayed in the Reserved Record List at the bottom of the screen. Please enter the host name in FQDN format followed by a "." in the end. For example, if you wish to specify the host name "www.example.com", you must enter "www.example.com. You must register at least one record (self) for the DNS server. If you wish to operate a domain registered with a mail server, you must also register at least one record for the mail server. After you have finished adding all servers, click the "Configure" button to complete your configuration. You may also add additional records in the "Record Management" menu in the future. 14 HDE Controller X DNS Server Manual
4. Add Sub Domain Sub domains are useful when the number of servers in a domain has increased to a point where it is difficult to manage all of them using a single domain. By adding another domain layer as sub domains, it will allow users to operate and manage domains with more ease. For example, by creating the sub domain "dev.example.com", users will be allowed to create a new server "www.dev.example.com" separate from the server "www.example.com". Users may also make any changes they desire to the server name as long as it does not overlap with "dev.example.com". By creating a sub domain, the zone data of the sub domain can be managed from a server separate from the master DNS server. With this feature, the domain administrator will be able to divide the management work by give other administrator the authority to manage sub domains. A new sub domain must first be created on the parent domain (Ex. "dev.example.com" must be created on "example.com"). The proceeding operations will differ depending on if the user wishes to manage the sub domain zone data on the master server ("example.com") or on a separate server. Manage sub domain on the master server Manage the zone data of the sub domain on the master DNS server. First click on the "Add Sub Domain" menu and enter the name of the sub domain you wish to create. Select "Use this server" and enter the name of your server in "Server Name". Click the "Configure" button to complete your configuration. DNS Server 15
Next, proceed to adding the record information of the sub domain. Click on the "Manage Records" menu. For "Select Zone", select the name of the sub domain you have just created and click the "Next" button. Add a new record for your sub domain to complete the configuration for the zone data of your sub domain. Manage sub domain on a different server Manage the zone data of the sub domain on a separate server. First click on the "Add Sub Domain" menu and enter the name of the sub domain you wish to create. Select "Use another server" and enter the name of the server you wish to use to manage the sub domain in "Server Name". For example, if you wish to manage the sub domain "dev.example.com" in the DNS server "dns2.example.com", enter "dev.example.com" in "Sub-Domain Name" and "dns2.example.com" in "Server Name". Click the "Configure" button to complete your configuration. Next, proceed with the normal procedures to create a master DNS server for "dev.example.com" in "dns2.example.com". 16 HDE Controller X DNS Server Manual
5. Add Slave Generally, multiple DNS servers are established as DNS function is considered to be crucial to the structure of the Internet. This is accomplished by setting one of the DNS servers as the master DNS server and the rest of the server as slave servers. Slave servers will automatically copy the data from the master server when the data on the master server is updated. Click the "Add Slave" menu to construct a slave DNS server for the domain. Please be aware that you will not be able to construct a slave DNS server if zone transferring is disabled on the master server. Enter the domain name and the IP address of the master server in "Domain Name" and "IP Address of Primary Master" respectively. Click the "Configure" button to complete your settings. DNS Server 17
6. Add Forward Configure the forwarding of queries directed to specific zones to other servers. This is an advanced setting that is not used regularly under normal circumstances. To forward all queries to the DNS server provided by the provider, change the configuration for the "Forward Query" setting in the "Basic Settings" menu. 18 HDE Controller X DNS Server Manual
7. Add Reverse Zone Create a master zone which maps IP addresses to host names. A master zone refers to a zone which contains the zone data as files on the DNS server. In "Network Address", enter the network address which represents the range of IP addresses which you wish to manage using the reverse zone. Select the network address from the network addresses (in CIDR format) displayed in "System Network". If the network you wish to create does not exist in "System Network", select "Other Network" and enter the network address that represent the range of IP addresses which you wish to manage using the reverse zone. What is CIDR(Classless Inter-Domain Routing)? CIDR refers to a writing format which writes IP addresses or network addresses in the format of "Address/Network Length". If the netmask is "255.255.255.128" ("11111111.11111111.11111111.10000000" in binary), 25 bits will be used as the network ID (network length = 25) and will be written as "/25". "Network Type" will be selectable if the network length defined in "Network Address" exceeds 25. If "Other Leased Line" is selected, please specify the prefix to be attached to the header of the reverse zone. After completing all of the entries, click the "Next" button to proceed with adding a record for the reverse zone. DNS Server 19
In the "Add Record" screen, first you must add a NS record. A NS record refers to a record which determines the server name of the name server used to manage the data of this zone. To add a NS record, leave the "Record" field blank and select "NS" for "Type of Record" and enter the FQDN of this server in "Value of Record". Click the "Add" button to add your record. When specifying the FQDN, please be sure to include a dot "." at the end of the FQDN. Next, you must add a PTR (Reverse Record) record. To add a new PTR record, select "PTR" for "Type of Record" and enter the numeric value of the last octet of the IP address and the FQDN of the host name corresponding to the IP address in "Records" and "Value of Record" respectively. For example, to add a PTR record to the reverse zone "0.168.192.inaddr.arpa" of the network "192.168.0.0/24" used to map the IP address "192.168.0.5" and the host name "host5.example.com", enter "5", "PTR", and "host5.example.com" in "Record", "Type of Record", and "Value of Record" respectively. If you specify the "Value of Record" without including a dot "." at the end of the record value, the dot "." will be automatically added as ".Zone Name." in the zone file and the value will be interpreted. For example, if you enter "host1.example.com" in "Value of Record" for the zone name "0.168.192.in-addr.arpa", it will be interpreted as "host1.example.com.0.168.192.in-addr.arpa." in the zone file. Hence please be sure to include a dot "." at the end of the FQDN when specifying host names in "Value of Record". For this example, "Value of Record" should be specified as "host1.example.com. After you have completed adding all records, click the "Configure" button to apply your settings to the configuration files. 20 HDE Controller X DNS Server Manual
8. Manage Records Allow users to add a new record or delete an existing record from an existing master zone. Select the master zone you wish to operate on from the list of existing master zones and click the "Next" button to proceed to the Manage Records screen. Users may add or delete records in the Manage Record screen. To add a new record, fill "Record", "TTL", "Type of Record", and "Value of Record" fields with the information of the record you wish to add under the Add Record section and click the "Add" button. For "Type of Record", you may select from NS Record/A Record/MX Record/CNAME Record/TXT Record for Forward Zones and NS Record/PTR Record/CNAME Record/TXT Record for Reverse Zones. If you specify the "Value of Record" without including a dot "." at the end of the record value, the dot "." will be automatically added as ".Zone Name." in the zone file and the value will be interpreted. For example, if you enter "host1.example.com" in "Value of Record" for the zone name "0.168.192.in-addr.arpa", it will be interpreted as "host1.example.com.0.168.192.in-addr.arpa." in the zone file. Hence please be sure to include a dot "." at the end of the FQDN when specifying host names in "Value of Record". For this example, "Value of Record" should be specified as "host1.example.com. If you have selected "TXT Record" for "Type of Record", enter the reply text you wish to send out towards any TXT Record queries. Please note that you may not use any multi-byte characters. DNS Server 21
For "TTL", enter the validity period of this record. If this field is omitted, its value will be set to the value specified in the "TTL" field in "DNS Server" - "Domain Information Management". To delete an existing record, click on the "Delete" button of the record you wish to delete in the list of existing records. Click the "Undo" button again if you wish to cancel your deletion. After you have completed your configuration, click the "Configure" button to apply your settings. You can also sort the list of records by Record, TTL, Type of Record, or Value of Record by clicking on each of the header fields on the top of the list. 22 HDE Controller X DNS Server Manual
HDE Controller PRO / LG User Manual April 30, 2011 1st Ed. 10.0-001 HDE, Inc. 16-28, Nanpeidaicho, Shibuya, TOKYO, 150-0036 JAPAN