BIND on Fedora Core 1 - 06/01/2004 ---------------------------------- 1. Install the bind, bind-util and bindconf RPMS 2. Run bindconf and create your forward and reverse zones a. Or add them manually to /var/named/chroot/etc/named.conf 3. Edit the zone files manually b/c bindconf sucks IMHO (found in /var/named/chroot/var/named/) 4. put the named.ca and named.local files into /var/named/chroot/var/named/ (if you have an older OS which may need updates) 5. service named start (or restart if already running) 6. dig example.net (verify domain response) Adding a 2ndary DNS server (slave) ---------------------------------- 1. A domain on primary should look like: ----BEGIN---- zone "example.net" { type master; file "example.net.zone"; allow-update { none; }; allow-transfer { ip.address.of.slave; }; }; ----END---- 2. Make sure to add 'notify yes;' to global options (if you want all domains to transfer): ----BEGIN---- options { notify yes; //adds notify for domains which have allow-transfer }; ----END---- 3. A domain on slave should look like: ----BEGIN---- zone "example.net" IN { type slave; masters { ip.address.of.master; }; }; ----END---- 4. Add 'notify no;' to the localhost and 0.0.127 reverse zones. ----BEGIN---- zone "localhost" IN { type master; file "localhost.zone"; allow-update { none; }; notify no; }; zone "0.0.127.in-addr.arpa" IN { type master; file "named.local"; allow-update { none; }; notify no; }; ----END---- BIND lines for DNS that allows clients to talk to AD ---------------------------------------------------- 2009-05-15 Add these lines to the zonefile for the root domain of the Active Directory Domain Controller _ldap._tcp.. SRV 0 0 389 . _kerberos._tcp.. SRV 0 0 88 . _ldap._tcp.dc._msdcs.. SRV 0 0 389 . _kerberos._tcp.dc._msdcs.. SRV 0 0 88 . gc._msdcs.. SRV 0 0 3268 .