Forum Discussion
F5_324021
Cirrus
CirrusGTM Design For External DNS Queries
Hello,
I'm a little bit confused here as I'm setting up my upcoming project design which includes 2 boxes with GTM and LTM modules each, and each box will be located in a site (SITE A, SITEB),G...
Hello,
what about the A record ip address of the Ns gtm1 is it the ip address of the listener configured on the GTM or is it the self ip address of the GTM?
Also i have another question when doing the same delegation from the external DNS (Internet side) the delegation configuration will be as you stated the following:-
ns1.gtm.example.com A X.X.X.X wip.example.com NS ns1.gtm.example.com
Here the X.X.X.X Ip address will be the piblic ip address of the GTM to be natted on the firewall or what?regardless if its the listener or the self ip of the GTM.
Hope you can help me
Thank you..
Greetings,
The flow looks like this:Internet
|
Firewall
| |
| |<------>GTM
|
|<------>LTM
The GTM server object's Address is the Firewall IP address (basic TCP connectivity), while the Translation IP address is the internal LTM IP address (this address is learned via iquery).
K14707: Configuring BIG-IP DNS server objects for BIG-IP devices that reside behind a firewall NAT
https://support.f5.com/csp/article/K14707
Kevin
F5_324021Hello Kevin,
What about the external DNS configuration?DNS delegation from the ISP side is enough for the GTM to receive all the DNS queries from the internet?
Thank you..
Greetings, These articles are fairly short and discuss basic BIG-IP DNS (GTM) functionality with regards to DNS delegation and DNS resolution:
K277: Delegating a subdomain to a BIG-IP DNS or BIG-IP Link Controller system from another DNS server
https://support.f5.com/csp/article/K277
Replacing a DNS Server with BIG-IP DNS
K14421: Achieving split DNS behavior through BIG-IP DNS wide IPs
https://support.f5.com/csp/article/K14421
Hope this is helpful!
Kevin
- F5_324021
Hello Kevim,
Seems split DNS configuration do the job , however from the DNS server even the Local DNS or the external DNS what should be done from that side to forward all DNS queries to the GTM.
Thank you..
Greetings, I wonder if K277 could use a minor update to better explain the following:
The delegation and glue records point to another DNS nameserver that will be responsible for the subdomain or zone (in this case your DNS/GTM). For example, in the zone file on the remote DNS server for the domain example.com, the delegation nameserver and A records for the delegated subdomain wip.example.com appear similar to the following example:
ns1.gtm.example.com A 192.168.10.100 wip.example.com NS ns1.gtm.example.comAll DNS resource records under the subdomain wip.example.com are now managed by the DNS/GTM on the ns1.gtm.example.com using IP address 192.168.10.100.
Hope this makes sense!
Kevin
- F5_324021
Hello Kevin,
what about the A record ip address of the Ns gtm1 is it the ip address of the listener configured on the GTM or is it the self ip address of the GTM?
Also i have another question when doing the same delegation from the external DNS (Internet side) the delegation configuration will be as you stated the following:-
ns1.gtm.example.com A X.X.X.X wip.example.com NS ns1.gtm.example.com
Here the X.X.X.X Ip address will be the piblic ip address of the GTM to be natted on the firewall or what?regardless if its the listener or the self ip of the GTM.
Hope you can help me
Thank you..