Setup ITERATIVE DNS in Ubuntu 8.04 Server

-
Step 1: Fresh Install the Ubuntu server with option of DNS server during installation or you can install DNS latter in step 2.

Step 2: Install DNS if not installed before
root@ins# apt-get install bind9

Step 3: Edit /etc/bind/named.conf.options to disable recursion.

By default the recursion is enables(yes), you can add /uncomment the follwoing line in option field.

//recursion yes; //default
recursion no;

root@ins:/etc/bind# nano named.conf.options

options {
directory "/var/cache/bind";

// If there is a firewall between you and nameservers you want
// to talk to, you might need to uncomment the query-source
// directive below. Previous versions of BIND always asked
// questions using port 53, but BIND 8.1 and later use an unprivileged
// port by default.

// query-source address * port 53;

// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.

// forwarders {
// 0.0.0.0;
// };

recursion no;
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
};

Step 4: Restart the bind
root@ins:/etc/bind# /etc/init.d/bind9 restart

Step 5: Testing

You can run wireshark in your machine and try to ping a host e.g ping www.google.com

In trace you will see the response from dns server, expand the Domain Name System, Flags and Authoritative Server list can be seen.

Comments

Post a Comment

Popular posts from this blog

PPPoE Server Under Ubuntu/Debian

-
PPPoE Server Setup: Operating System: Ubuntu Desktop(8.04) 1) Installation of Softwares: Server Side a) ppp apt-get install ppp b) pppoe apt-get install pppoe c) rp-pppoe (I used rp-pppoe-3.10.tar.gz) RP PPPoE; can be obtained from, http://www.roaringpenguin.com/products/pppoe After download Move it to some place e.g /var/tmp, unpack and change permission root@pppoe:/var/tmp# mv /home/imran/Desktop/rp-pppoe-3.10.tar.gz /var/tmp/ root@pppoe:/var/tmp# tar -xvf rp-pppoe-3.10.tar.gz root@pppoe:/var/tmp# chown imran:imran rp-pppoe-3.10 root@pppoe:/var/tmp# ls -l total 220 drwxr-xr-x 8 imran imran 4096 2008-06-30 16:00 rp-pppoe-3.10 -rw-r--r-- 1 imran imran 215288 2009-10-19 10:31 rp-pppoe-3.10.tar.gz root@pppoe:/var/tmp# Open README file and go through it.There are 3 methods I shall go for first one, QuickStart method. QUICKSTART Method : "If you're lucky, the "quickstart" method will work. After unpackingthe archive, become root and type" root@pppoe:/var/tmp# cd...
Read more

Intrusion Detection and Prevention Using OSSEC

-
What is OSSEC? According to OSSEC "It is an Open Source Host-based Intrusion Detection System. It performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response." Installation on Debian Server I installed on Debian .6.24-19-server, already running web service. Install environment Make sure you have compiler e.g gcc or cc and 'make' already installed in your system, otherwise you will get error message and abort the installation process. root@www:/usr/local/src/ossec-hids-2.4.1# apt-get install gcc Dwonload the latest build from www.ossec.net website Extract into folder and start installation imran@web:~/ossec-hids-2.4.1$ tar -zxvf ossec-hids-2.4.1.tar.gz imran@web:~/ossec-hids-2.4.1$ cd ossec-hids-2.4.1/ Run the installation script; root@web:~/ossec-hids-2.4.1# ./install.sh ** Para instalação em português, escolha [br]. ** 要使用中文进行安装, 请选择 [cn]. ** Fur eine deutsche Installation wohlen Sie [de]. ** Για ε...
Read more

Installation of GNS3 on Windows

-
Installation of GNS3 on Windows (7) It is better if you have already install loopbak interface on your machine. VMware Workstation: Download from vmware site. Loopback interface : Installation of  loopback interface on windows 7 GNS3 : Download  GNS3: GNS3 v08.2 all-in-on, this will intstall all necessary tools and packages. Cisco router IOS images: Download   IOS-images   from this location Cisco ASA firewall IOS and ASDM : Download  ASA_IOS  and ASDM-645-204 TFTP server:   Download  and run the setup to install.
Read more