DNS Verification

T

Tommy

Can someone with more experience with DNS tell me if I've got this
configured correctly? I want my domain to have ns1.mdomain and I have
another name server for a secondary.

Thanks in advanced!

;
; Database file mydomain.comdns for mydomain zone.
; Zone version: 45
;

@ IN SOA www.mydomain.com
hostmaster.mydomain.com (
45 ; serial number
900 ; refresh
600 ; retry
86400 ; expire
3600 ) ; default TTL

;
; Zone NS records
;

@ NS server14.mydomain.com
@ NS ns1.mydomain.com

;
; Zone records
;

@ MX 10 server15.mydomain.com
afnet CNAME server14.mydomain.com
blackberry01 CNAME server6.mydomain.com
employees CNAME server14.mydomain.com
fppix02 A 209.10.3.178
ftp CNAME mydomain.com
mail MX 10 server15.mydomain.com
neserver18 A 209.10.3.187
server11 A 209.10.3.182
server14 A 209.10.3.183
server15 A 209.10.3.184
MX 10 server15.mydomain.com
server6 A 209.10.3.180
server9 A 209.10.3.181
ns1 A 209.10.3.183
old A 209.15.171.80
pcp A 209.10.3.74
sql1 A 209.10.3.72
www CNAME mydomain.com
 
H

Herb Martin

Tommy said:
Can someone with more experience with DNS tell me if I've got this
configured correctly? I want my domain to have ns1.mdomain and I have
another name server for a secondary.

Thanks in advanced!
Click to expand...

Looks ok. Is it working?

Do you actually accept email for (e-mail address removed) (corrected
domain name etc.)? You should.

Why not just use the GUI and make it easy on yourself?
 
A

Ace Fekay [MVP]

In
Tommy said:
Can someone with more experience with DNS tell me if I've got this
configured correctly? I want my domain to have ns1.mdomain and I have
another name server for a secondary.

Thanks in advanced!

;
; Database file mydomain.comdns for mydomain zone.
; Zone version: 45
;

@ IN SOA www.mydomain.com
hostmaster.mydomain.com (
45 ; serial number
900 ; refresh
600 ; retry
86400 ; expire
3600 ) ; default TTL

;
; Zone NS records
;

@ NS server14.mydomain.com
@ NS ns1.mydomain.com

;
; Zone records
;

@ MX 10 server15.mydomain.com
afnet CNAME server14.mydomain.com
blackberry01 CNAME server6.mydomain.com
employees CNAME server14.mydomain.com
fppix02 A 209.10.3.178
ftp CNAME mydomain.com
mail MX 10 server15.mydomain.com
neserver18 A 209.10.3.187
server11 A 209.10.3.182
server14 A 209.10.3.183
server15 A 209.10.3.184
MX 10 server15.mydomain.com
server6 A 209.10.3.180
server9 A 209.10.3.181
ns1 A 209.10.3.183
old A 209.15.171.80
pcp A 209.10.3.74
sql1 A 209.10.3.72
www CNAME mydomain.com
Click to expand...

You have too many MX records but all *seem* to be pointing to the same
machine. This doesn't make sense.
mail MX 10 server15.mydomain.com
MX 10 server15.mydomain.com
Click to expand...

I would just create a 'mail' A record pointing to 209.10.3.184, then create
an MX record, leaving the hostname portion blank, and set the name in the
bottom box to mail.mydomain.com.

Example:
I would delete:
MX 10 server15.mydomain.com
mail MX 10 server15.mydomain.com
@ MX 10 server15.mydomain.com
Click to expand...

Then I would create these two records ONLY (since you only have one mail
server):
mail A 209.10.3.184
@ MX mail.mydomain.com


You have too many CNAMES. I try to avoid them. You can easily just create A
records with the different host names pointing to whatever IP address they
need to go to. This eliminates extra resolution steps.

Example:
Instead of:
blackberry01 CNAME server6.mydomain.com
You can create:
blackberry A 209.10.3.180
Do the same for afnet, employees, ftp, etc.


I don't see a blank domain record, which should look like this:
@ A TheIpAddressOfYourWebserver
www A TheIpAddressOfYourWebserver
The blank record allows connections by using http://mydomain.com, without
the www, as long as the hostheader is set properly in the website properties
for both mydomain.com and www.mydomain.com.

Plus, if 209.10.3.184 is your mail server, there is no reverse entry for it.
That will stop many mail systems running spam control software.

And as Herb said, use the GUI, it's easier.

If you want further info and to test it, go to www.dnsstuff.com and
www.dnsreport.com. If you like, post the actual name and we can test it.


--
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

If this post is viewed at a non-Microsoft community website, and you were to
respond to it through that community's website, I may not see your reply
unless that website posts replies back to the original Microsoft forum.
Therefore, please direct all replies ONLY to the Microsoft public newsgroup
this thread originated in so all can benefit or ensure the web community
posts it back to the original forum.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Windows Server Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations.
=================================
 
Top