I found really nice to write Ansible role for this task. You can have templates with variables, secrets and what not. Single change in template will force it to upload, reload named, etc... And you have almost like complete documentation on how to set it up. + Git history. :) Really nice video. Thumbs up for Fedora. :) I would like to see something from intercepting all LAN DNS queries in firewall and sending them out as TLS DNS queries. Google, Cloudflare, etc AFAIK supports 853. Firewall part is kinda clear. But i would like to see Named's configuration to do that.
Thanks for watching :). Dabblig in Ansible is on my long list of things to get around to. As far as TLS DNS queries, thanks to news about Firefox, I've become more aware of DNS over HTTPS, and that's been added to my list of things about which to tinker and learn -- specifically how to leverage BIND for that.
Great video! If anyone is having trouble with Virtual Box, it worked when I added a Nat network (Thats in File - Preferences - Network - then add your net id with CIDR.)
Thank you! I've used Virtual Box sparingly (usually am using KVM or Hyper-V), but what I remember the NAT network does sometimes magically fix problems.
Hi, thanks for making this video available, it's very instructive. I have installed Rhel 7.7 on a VM with a static IP where DNS and gateway were already configured, I can go to internet before installing and configuring bind however FQN to other machine won't work nor ping. So my goal is to set up bind dns so that on this machine so that I can ping another client? How should I proceed, remove the DNS IP and and configure bind? Thanks,
Ultimately, if you want to ping with name resolution, you'll need to have your VM configured to talk to a DNS resolver, whether it be your local BIND installation or some other DNS server. You can contact me from ejsllc.com if you want to setup some time to troubleshoot.
Following this to the letter on Rocky Linux and when I start named, it's not starting and showing /etc/named.conf:193: bad secret 'bad base64 encoding'. How can I fix?
Unfortunately, there's not enough information here for me to give a precise answer, but that error is saying where in your named.conf file is causing BIND to complain. Maybe there's a syntax error near there. I know that } and ; have bitten me a few times when doing my named.conf edits.
I've never used Unbound. Root DNS servers use BIND, so BIND is good enough for me. :) Default configuration will cache requests. You can use rndc dumpdb -cache to create a file that has the cache. On my installation the dump file that was created was /var/named/data/cache_dump.db
This is the first tutorial I've found on this that actually got me working. Thank you, sir!
I'm glad it was helpful!
I found really nice to write Ansible role for this task. You can have templates with variables, secrets and what not. Single change in template will force it to upload, reload named, etc... And you have almost like complete documentation on how to set it up. + Git history. :) Really nice video. Thumbs up for Fedora. :)
I would like to see something from intercepting all LAN DNS queries in firewall and sending them out as TLS DNS queries. Google, Cloudflare, etc AFAIK supports 853. Firewall part is kinda clear. But i would like to see Named's configuration to do that.
Thanks for watching :). Dabblig in Ansible is on my long list of things to get around to. As far as TLS DNS queries, thanks to news about Firefox, I've become more aware of DNS over HTTPS, and that's been added to my list of things about which to tinker and learn -- specifically how to leverage BIND for that.
Great video! If anyone is having trouble with Virtual Box, it worked when I added a Nat network (Thats in File - Preferences - Network - then add your net id with CIDR.)
Thank you! I've used Virtual Box sparingly (usually am using KVM or Hyper-V), but what I remember the NAT network does sometimes magically fix problems.
Eddie, thank you for this video. I found it very useful to set up my lab DNS server, which I need to have for my Foreman server. Thanks again.
You're welcome! I'm glad it was helpful for you. Foreman is on my list of things to try to stand up in my lab in the next few months.
🙏
Thank you so much. The firewall part got me the whole day. Now it worked!
You're welcome. I, too, will forget to do firewall configurations sometimes :)
Excellent video(s). Thank you for putting this out in the world.
You're welcome, and thanks for being a subscriber!
Hey man.. great presentation. Much much appreciation.
You're welcome. Thanks for watching!
great Video and greate explanation...now going to part 2
Thank you!
Great video Eddie.
Thank you! Glad you enjoyed it!
Nice tutorial, keep them coming!
Miko, thanks for watching! I intend to make some more as I have time (and feel like I know enough about a topic to make a proper tutorial).
Thank you, helped me a lot!
You're welcome! I'm glad it was helpful. Make sure you subscribe, as there's more content coming :D
need to do dns work but with no any concept this for help me get out from blank brain
Thanks a million.
You're welcome! Thanks for watching.
Hi,
thanks for making this video available, it's very instructive.
I have installed Rhel 7.7 on a VM with a static IP where DNS and gateway were already configured, I can go to internet before installing and configuring bind however FQN to other machine won't work nor ping. So my goal is to set up bind dns so that on this machine so that I can ping another client?
How should I proceed, remove the DNS IP and and configure bind?
Thanks,
Ultimately, if you want to ping with name resolution, you'll need to have your VM configured to talk to a DNS resolver, whether it be your local BIND installation or some other DNS server. You can contact me from ejsllc.com if you want to setup some time to troubleshoot.
Following this to the letter on Rocky Linux and when I start named, it's not starting and showing /etc/named.conf:193: bad secret 'bad base64 encoding'. How can I fix?
Unfortunately, there's not enough information here for me to give a precise answer, but that error is saying where in your named.conf file is causing BIND to complain. Maybe there's a syntax error near there. I know that } and ; have bitten me a few times when doing my named.conf edits.
Is this better than unbounded dns server
And does it CACH the sites
I've never used Unbound. Root DNS servers use BIND, so BIND is good enough for me. :)
Default configuration will cache requests. You can use rndc dumpdb -cache to create a file that has the cache. On my installation the dump file that was created was /var/named/data/cache_dump.db