User Tools
toolsandtechnologies:raspberrypidnsslave
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revision | |||
| toolsandtechnologies:raspberrypidnsslave [2018/10/18 12:05] – ccarew | toolsandtechnologies:raspberrypidnsslave [2021/06/25 10:09] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ====== Setup Raspberry Pi (Raspbian) as DNS Slave ====== | ||
| + | --- // | ||
| + | Ensure the pi has a scotty user who has sudoer access | ||
| + | This tutorial assumes you 10.91.100.71 is the master DNS and that 10.5.5.15 is the IP of the slave | ||
| + | |||
| + | SSH to the pi as scotty | ||
| + | * sudo apt-get update | ||
| + | * sudo apt-get install bind9 bind9utils | ||
| + | * sudo mv / | ||
| + | * sudo nano / | ||
| + | // | ||
| + | // Please read / | ||
| + | // structure of BIND configuration files in Debian, *BEFORE* you customize | ||
| + | // this configuration file. | ||
| + | // | ||
| + | // If you are just adding zones, please do that in / | ||
| + | |||
| + | include "/ | ||
| + | include "/ | ||
| + | include "/ | ||
| + | include "/ | ||
| + | </ | ||
| + | * sudo nano / | ||
| + | listen-on port 53 { 127.0.0.1; 10.5.5.15; }; | ||
| + | listen-on-v6 port 53 { ::1; }; | ||
| + | directory "/ | ||
| + | allow-query | ||
| + | recursion yes; | ||
| + | dnssec-enable yes; | ||
| + | dnssec-validation no; | ||
| + | dnssec-lookaside auto; | ||
| + | |||
| + | // If there is a firewall between you and nameservers you want | ||
| + | // to talk to, you may need to fix the firewall to allow multiple | ||
| + | // ports to talk. See http:// | ||
| + | |||
| + | // If your ISP provided one or more IP addresses for stable | ||
| + | // nameservers, | ||
| + | // Uncomment the following block, and insert the addresses replacing | ||
| + | // the all-0' | ||
| + | |||
| + | | ||
| + | 8.8.8.8; | ||
| + | }; | ||
| + | |||
| + | // | ||
| + | // If BIND logs error messages about the root key being expired, | ||
| + | // you will need to update your keys. See https:// | ||
| + | // | ||
| + | |||
| + | auth-nxdomain no; # conform to RFC1035 | ||
| + | };</ | ||
| + | * # Note please replace 10.5.5.15 in the above file with whatever IP you want as the DNS Slave | ||
| + | * sudo nano / | ||
| + | |||
| + | zone " | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | |||
| + | zone " | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | |||
| + | zone " | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | |||
| + | zone" | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | zone " | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | |||
| + | zone" | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | |||
| + | zone " | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | zone " | ||
| + | type slave; | ||
| + | file "/ | ||
| + | masters { 10.91.100.71; | ||
| + | }; | ||
| + | |||
| + | </ | ||
| + | * ssh to the master dns (qadb2) and | ||
| + | * sudo nano / | ||
| + | * # Ensure that < | ||
| + | * # If not add it and save and | ||
| + | * sudo service named restart | ||
| + | * # ssh back to the pi | ||
| + | * sudo reboot | ||
| + | * ls -l / | ||
| + | * # Ensure froward and reverse for crown, errigal and extenet are present | ||
| + | * # if encountering any issues please run | ||
| + | * sudo tail -f / | ||
| + | * # On the pi to see if there are any issues transferring down the files | ||
| + | * # If no issues then thats it you should now be able to set this pi as a DNS | ||
Page Tools
