ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    What do you use for a local DNS server?

    IT Discussion
    dns bind dnsmasq centos linux
    5
    21
    4.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      Alex Sage
      last edited by scottalanmiller

      I am thinking about using a CentOS server 😄

      Better option? Maybe a security appliance that has one built in?

      This is for home use, not business.

      Thanks for your help!

      1 Reply Last reply Reply Quote 1
      • RamblingBipedR
        RamblingBiped
        last edited by RamblingBiped

        I'm going to be running BIND on CentOS 7 at home when I get the extra time to get it up and running.

        https://www.digitalocean.com/community/tutorials/how-to-configure-bind-as-a-private-network-dns-server-on-centos-7

        1 Reply Last reply Reply Quote 0
        • stacksofplatesS
          stacksofplates
          last edited by

          I just use dnsmasq on my EdgeRouter. If you're using Linux, another simple option is to use scp or something like Ansible to push out hosts to each /etc/hosts file.

          A 1 Reply Last reply Reply Quote 1
          • A
            Alex Sage @stacksofplates
            last edited by

            @johnhooks I have a Edge Router X! Can you tell me more about that? How do I set that up?

            stacksofplatesS 1 Reply Last reply Reply Quote 1
            • stacksofplatesS
              stacksofplates @Alex Sage
              last edited by

              @anonymous said:

              @johnhooks I have a Edge Router X! Can you tell me more about that? How do I set that up?

              There are a few ways. The easiest is to just add the hosts to the /etc/hosts file and do service dnsmasq restart.

              You can also use the config tree to add them under the config tree in service>static host mapping.

              You can also do set system static-host-mapping host-name <hostname> inet <ip address>

              A 1 Reply Last reply Reply Quote 0
              • A
                Alex Sage @stacksofplates
                last edited by

                @johnhooks Thanks for that, however I don't want to have to edit any files.

                stacksofplatesS scottalanmillerS 2 Replies Last reply Reply Quote 0
                • stacksofplatesS
                  stacksofplates @Alex Sage
                  last edited by

                  @anonymous said:

                  @johnhooks Thanks for that, however I don't want to have to edit any files.

                  The second two options do it for you. You can just add them through the GUI or just type the second command in the cli.

                  A 1 Reply Last reply Reply Quote 0
                  • A
                    Alex Sage @stacksofplates
                    last edited by Alex Sage

                    @johnhooks Why do I have to add anything? Why can't it just use the hostname from DHCP?

                    stacksofplatesS 1 Reply Last reply Reply Quote 0
                    • stacksofplatesS
                      stacksofplates @Alex Sage
                      last edited by

                      @anonymous

                      Ah it does have that option. I missed that before. It's under service>dhcp-server>hostfile-update

                      A 1 Reply Last reply Reply Quote 0
                      • A
                        Alex Sage @stacksofplates
                        last edited by Alex Sage

                        @johnhooks I would still have to add static ip addresses right?

                        stacksofplatesS 1 Reply Last reply Reply Quote 0
                        • stacksofplatesS
                          stacksofplates @Alex Sage
                          last edited by

                          @anonymous said:

                          @johnhooks I would still have to add static ip addresses right?

                          Yes.

                          1 Reply Last reply Reply Quote 0
                          • scottalanmillerS
                            scottalanmiller @Alex Sage
                            last edited by

                            @anonymous said:

                            @johnhooks Thanks for that, however I don't want to have to edit any files.

                            How will you run DNS without editing files?

                            1 Reply Last reply Reply Quote 1
                            • scottalanmillerS
                              scottalanmiller
                              last edited by

                              Pretty much the only DNS server I would run would be BIND if I was putting it on a server.

                              A 1 Reply Last reply Reply Quote 1
                              • quicky2gQ
                                quicky2g
                                last edited by

                                I use my Mikrotik router. Had a forum post on config here.

                                1 Reply Last reply Reply Quote 0
                                • A
                                  Alex Sage @scottalanmiller
                                  last edited by

                                  @scottalanmiller Whats wrong with dnsmasq?

                                  scottalanmillerS 1 Reply Last reply Reply Quote 0
                                  • scottalanmillerS
                                    scottalanmiller @Alex Sage
                                    last edited by

                                    @anonymous said:

                                    @scottalanmiller Whats wrong with dnsmasq?

                                    It's fine, just meant to be a forwarder not a DNS server. It has limited capability to serve out a small text file when needed. If you are going to use it, why not just push hosts files around?

                                    A 1 Reply Last reply Reply Quote 1
                                    • A
                                      Alex Sage @scottalanmiller
                                      last edited by

                                      @scottalanmiller That's a fair point. I guess my problem is my hostnames are changing all the time as I add/remote/change VM's etc.

                                      scottalanmillerS 1 Reply Last reply Reply Quote 0
                                      • scottalanmillerS
                                        scottalanmiller @Alex Sage
                                        last edited by

                                        @anonymous said:

                                        @scottalanmiller That's a fair point. I guess my problem is my hostnames are changing all the time as I add/remote/change VM's etc.

                                        Makes sense. If you are adding or removing with Ansible or Chef that would solve that.

                                        Where are you using all of the host names? I do this all the time but I only access them from the jump box normally. Do you have services that need to talk to one another but are being created and destroyed regularly?

                                        A 1 Reply Last reply Reply Quote 0
                                        • A
                                          Alex Sage @scottalanmiller
                                          last edited by

                                          @scottalanmiller That's the whole reason I want DNS setup. I want to be able to SSH by hostname, not IP address, however I guess your right, maybe I just need to setup the host names on the jumpbox.

                                          scottalanmillerS 1 Reply Last reply Reply Quote 0
                                          • quicky2gQ
                                            quicky2g
                                            last edited by

                                            I saw a presentation at a conference 5 or 6 years ago from an IANA guy. He said they're so paranoid about DNS that they have multiples of everything for the same letter root DNS server. They use hard drives, power supplies, network cables, DNS software, firewalls, etc all from multiple different companies. He also said they've gotten DoS attacks over 10Gbps. He said they were one of the driving forces for NGFW manufacturers to start making firewalls that could do 10Gbps. He said they've been able to sustain DoS attacks and not go down...you guys better! Pretty crazy stuff.

                                            1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 1 / 2
                                            • First post
                                              Last post