HowTo setup DNS for ISPConfig name servers and dns zones requirements

  • Hello There,

    Need help on HowTo setup DNS for ISPConfig name servers and dns zones requirements
    I have ISPConfig running with all systems online.

    My goal is to have an internal webserver to provide a platform to develop and prototype my customer’s web sites
    I want to implement internal subdomains, of my external public domain, for any or all of my customers.
    I want to implement split-brain DNS for security purpose

    My setup is like this:
    (The Perfect Server - CentOS 6.4 x86_64 (nginx, Dovecot, ISPConfig 3)) virtualized on Xenserver 6.2
    Running in a Windows Active Directory Domain (providing DHCP / DNS / AD) environment

    The IPSConfig server is integrated in AD with PowerBroker open (tested and working)
    It's name is say on static ip

    The AD domain is lets say
    It's name is say (also on xen) static ip

    My ISP is giving me a DHCP ip also
    My router is pfSense 2.1 lan IP

    1- First I'd like your insight to help me to validate this setup.
    2- Considering that my router’s public ip is dynamic
    a.) Is it possible to publish my servers ip without dynamic dns
    b.) How should I setup my external dns services as to meet ISPConfig name servers requirements.

    Any help or comments is welcome and much appreciated.
    See Related post on howtoforge (
    Best Regards


  • Please excuse my ignorance… still very new with this.

    Ok this is answered a couple of questions (
    to the question "Is it possible to publish my servers ip without dynamic dns"
    the question should have been … without an external dns

    So I went ahead an installed the bind package.

    But I just not sure on what name to use in "/etc/namedb/named.conf".
    relating to my setup should I put instead of

    when I create my

    my guess is i will need to put

    how do I relate my setup with regards to your "" IN SOA

    Is the pfsense router?
    Also in this tutorial am I correct to assume that the full path of "dynamic/" is /etc/namedb/dynamic/" ?

    Is there any other specific tutorial I should study?

    Please help

    Best Regards


  • For me i created all my DNS records through ISPConfig, verified records added via Webmin.

    Then under the DHCP server settings i have all internal devices using that server as its DNS, no secondary listed, and i can access all my sites internally with this setup.

    Without the internal DNS PFSense thinks its under attack and will give a security error and not allow me to access any of my hosted sites.

  • Hey ghostshell,

    Thank's for your answer !

    In my setup the DHCP server is Win AD! Am I correct to understand that I would need to enable dhcp on pfsense.

    What do you mean by

    Without the internal DNS PFSense…

    I'm confused here…
    Do you mean some other DNS server than the one your ISPconfig setup is providing.

    Can you elaborate please?



Log in to reply