dns express
6 TopicsMultiple "views" with DNS Express?
I need to create an internal and external view of our domain, and would like to utilize DNS Express...but I don't seem to be able to find any documentation on how I can do multiple views. Is it possible? If not, then I am right back to having to do it with BIND on the GTMs and I cannot seem to find anyone who knows how to do multiple views for one domain on a GTM and only one view for another. Any help would be greatly appreciated. -Emmett594Views0likes5CommentsDNS Express is showing internal zone
We are using on-box BIND with "internal" and "external" views. We have configured two DNS listners; Internal and external. External listener is NATted on the firewall for outside world and is non-recursive. External DNS listener has a dns profile with "dns express" enabled. dns express zones are created pointing to the local BIND with either 127.0.0.1 or the IP address of the listener. For some reason, the DNS express transfer "internal zone", while it should transfer external. I have tried quite a few things and read articles but couldn't find enough detail on how to set up 'dns express' all things considered. Any ideas on why it is not transferring external zones?Solved875Views0likes5CommentsDNS express with local bind make a duplicate and fail record
Hi From John article. https://devcentral.f5.com/articles/dns-express-and-zone-transfers We try to use do the same (DNS express from local bind) but we found the problem We have to insert localhost in match-client {} cause if not, Transfer zone will not success But when we do that, When we create record in zonerunner we found duplicate record (we have two viewes and we found record which created on each views) and we can't resolve it name on particular views. Did anyone experience this? Can we change that "localhost" to something else? Thank you246Views0likes1CommentDNS listeners, DNS Express & BIND
I'm a little confused over what is/ isn't deemed best practice. Is there's anything wrong with the following points? Listener configured; queries are both wip's and non-wip records. Bind is enabled to be able to create non-wip records - is this correct? Recursion has been enabled in the named config and restricted to an acl of rfc1918 addresses. DNS express is configured to import the local zone from bind for performance purposes. Unhandled Query Actions set to drop in the profile. My understanding being requests would not be passed to bind with this set thus making it more secure? With this enabled the wip times out 3 times before resolving on the 4th try. Coincidentally I have 4 VS in the gslb pool. I did try disabling bind completely and found my wip's again timed out several times before eventually resolving? Any pointers/ help, much appreciated.609Views0likes7CommentsDNS Express and CNAMES to AWS servers
For internal DNS we sync our GTMs' DNS Express with AD Integrated DNS that is managed by another team. By default, CNAMES that point to the names of servers in AWS are not being resolved to an IP by DNS Express (in contrast to the behavior of the AD integrated DNS). I know that this is the expected behavior. Would there be some way to allow these to be resolved, besides using Irules or Wide IPs? (Thinking along the lines of some Notify Action setting or an unhandled query action) I am looking for something that would not require us to touch DNS entries after they are added to AD integrated DNS by the server team, but still be able to use the great performance boost of DNS Express. Thank you for any thoughts.818Views0likes7CommentsZone Transfer Request
Hi, I've one query regarding zone transfer request. How do a GTM or BIGIP DNS answer zone transfer request, have done this through DNS Express feature of F5, and its' working but its' working as required. I have two DNS one is F5 BIGIPDNS and other one Bind. The IXFR is not working from BIGIPDNS to Bind, where BIGIP DNS is primary and Bind is secondary DNS. Please let me know if anybody know the solution. Thanks175Views0likes0Comments