DNS configuration
-
If unbound is resolver, which is default.. it talks to roots to get the NS for the tld, then asks the tld NS for for the NS for the domain in question. Then asks the NS for domain.tld for the actual record.
You state slightly other IPs... So how and the F do you think the IPs you have setup have anything to do with it?
Yeah in the process of resolving say google.com - going to have to talk to NS that are authoritative for google.com.. Which yeah going to be on a google owned IP ;)
Do a simple dig +trace if you want understand how the resolving process works.
How it you have been in the biz for how many years and you don't understand basic dns?
-
Not everybody knows everything. I've been doing this for years and I still got schooled for assuming that I could port-forward traffic to a non-existent address until I stopped and thought about it.
-
Agreed... But dns is how the internet works.. And he is a techy.. Never wondered how www.google.com gets you IP address?
Pretty sure he has been around for the birth of the internet ;) Same as me - how you got an IP from a name was pretty essential in understanding how the network works, and it didn't come up until now?
I can understand the nontechy kids of today, or grandma etc. not getting it... But he is a tech guy that works in the biz.. And if not mistaken for many many years - like before there even was an internet ;) So how it 30 some years latter just not getting to figuring it out? That is my question.
Not asking him how he doesn't know the correct formatting for bind conf file.. Or how to register a authoritative ns, etc But understanding the basic concept of how it works.. You would of thunk would be something he looked into years and years ago just saying.
-
@johnpoz said in DNS configuration:
Agreed... But dns is how the internet works.. And he is a techy.. Never wondered how www.google.com gets you IP address?
Yes, I have been around for years, but never really focused on DNS. I was just going through the psSense book and decided to see what was happening with my own system.
-
Just nuts... Here is a fantastic book if you want to get some better understanding.
http://shop.oreilly.com/product/9780596100575.doThey have a dns and IPv6 you prob be more interested in.
http://shop.oreilly.com/product/0636920020158.do -
DNS and BIND, 5th Edition: 648 pages
DNS and BIND on IPv6: 54 pages
-
eh knowledge come to a price
-
@kiokoman Yes, but how is the IP6 book a tenth of the size? I assume it's a typo, but I still thought it was funny.
-
nope. "this concise book provides the essentials you need to support this protocol "
generally speaking someone should read the first book and than the second one. dns concept are, for the most, the same for ipv4 and ipv6 -
Yeah you need to read the first one first ;) But I threw in link to IPv6 one because that would get his motor running.. He is the local ipv6 Drum Major ;)
-
[google]
@johnpoz said in DNS configuration:he has been around for the birth of the internet ;)
I remember very well, in the old days when Compuserve offered something called a 'gateway' to a new network called 'Internet' (had to install a program called "SPRY Mosaic" to 'browse' that network). Yahoo had a site that permits to search the available resources. Google, as a site and competitor, came some time afterwards.
-
Remember the old trumpet winsock program to get tcp/ip back in the day ;)
So yeah back at the birth... So how is some 25-30 years later just now getting around to figuring out how dns works.. Just funny to me is all. Happy to help... That book is very good read.. Back when I read it 1st or 2nd edition ;) Early 1990s time frame.
-
@johnpoz said in DNS configuration:
So yeah back at the birth... So how is some 25-30 years later just now getting around to figuring out how dns works.
As someone else mentioned, you can't know everything and I hadn't focused on DNS. I am aware of how it works, with root servers etc., but my attention was elsewhere. All I was doing the other day is seeing how pfSense matched up with what was in the book and used Wireshark to see what was happening, as I often do.