Hi all,
I have recently set up a Mac OS X Tiger Server 10.4.7 machine and would simply like to list what I have done with regards to DNS in order to get feedback if all is done properly.
I use a router and it gets all the info it needs from my ISP via DHCP and provides NAT. Naturally, the router is also the firewall.
On my Lan, I have 5 macs, and 1 Mac G4 which is running Tiger Server 10.4.7
I have setup DNS on Tiger Server as follows:
GENERAL:
Allow: Zone Transfer and Recursion
ZONES:
I have added my Tiger Server with its static internal IP, and in the MACHINES sub-section, I added all my other machines as well.
SECONDARY ZONES:
I added nothing.
Now, on the Tiger Server, I edited the named.conf file in order to enable forwarding. This is what I entered (ps. do I need to put the // befrore query?)
query-source address * port 53;
forwarders {
10.10.1.1;
};
};
Note: 10.10.1.1 is my router. I did not put my ISP's DNS IPs directly in there just in case they change. My router will always use the right DNS servers from my ISP, so by simply putting my routers IP in the named.conf file, I figured it would be ok.
ON THE MAC CLIENTS:
In the Network system preferences, I entered the internal IP of my Tiger Server.
RESULT:
I get all the correct resolutions (forward and reverse) of all my internal Macs as well as any domains outside my lan and the speed of the internet browsing on all my Macs is blazing fast and unaffected.
MY QUESTION:
Even though this setup works well; is it the correct way of doing things? Is everything as secure as it should be? Is the syntax ok? I'm not a pro at this so I would really appreciated more experienced users input if possible.
Thanks to all help in advance.
Tony
I have recently set up a Mac OS X Tiger Server 10.4.7 machine and would simply like to list what I have done with regards to DNS in order to get feedback if all is done properly.
I use a router and it gets all the info it needs from my ISP via DHCP and provides NAT. Naturally, the router is also the firewall.
On my Lan, I have 5 macs, and 1 Mac G4 which is running Tiger Server 10.4.7
I have setup DNS on Tiger Server as follows:
GENERAL:
Allow: Zone Transfer and Recursion
ZONES:
I have added my Tiger Server with its static internal IP, and in the MACHINES sub-section, I added all my other machines as well.
SECONDARY ZONES:
I added nothing.
Now, on the Tiger Server, I edited the named.conf file in order to enable forwarding. This is what I entered (ps. do I need to put the // befrore query?)
query-source address * port 53;
forwarders {
10.10.1.1;
};
};
Note: 10.10.1.1 is my router. I did not put my ISP's DNS IPs directly in there just in case they change. My router will always use the right DNS servers from my ISP, so by simply putting my routers IP in the named.conf file, I figured it would be ok.
ON THE MAC CLIENTS:
In the Network system preferences, I entered the internal IP of my Tiger Server.
RESULT:
I get all the correct resolutions (forward and reverse) of all my internal Macs as well as any domains outside my lan and the speed of the internet browsing on all my Macs is blazing fast and unaffected.
MY QUESTION:
Even though this setup works well; is it the correct way of doing things? Is everything as secure as it should be? Is the syntax ok? I'm not a pro at this so I would really appreciated more experienced users input if possible.
Thanks to all help in advance.
Tony
