Zimbra

Mistoffeles · #1 (**permalink**) 08-18-2009, 05:14 PM

Been banging my head against the wall on this one. The split DNS is, for some reason, just not working for me and the solution is just evading me completely.

I have this:

/etc/resolv.conf

Code:

nameserver 204.244.3.129
nameserver 204.244.3.130
search mydomain.com

/etc/hosts

Code:

127.0.0.1	localhost.localdomain	localhost
192.168.5.5	mail.mydomain.com	mydomain.com	mail

/etc/nsswitch.conf

Code:

hosts:	dns

/etc/sysconfig/network

Code:

NETWORKING=yes
NETWORKING_IPV6=no
HOSTNAME=mail.mydomain.com
DNS1=204.244.3.129
DNS2=204.244.3.130

/etc/sysconfig/network-scripts/ifcfg-eth0

Code:

DEVICE=eth0
BOOTPROTO=none
BROADCAST=192.168.5.255
HWADDR=00:1b:fc:f3:34:4c
IPADDR=192.168.5.5
NETMASK=255.255.255.0
NETWORK=192.168.5.0
ONBOOT=yes
GATEWAY=192.168.5.1
TYPE=Ethernet

/etc/sysconfig/network-scripts/ifcfg-eth1

Code:

DEVICE=eth1
BOOTPROTO=dhcp
HWADDR=00:1b:fc:f3:34:4c
ONBOOT=no
DHCP_HOSTNAME=localhost.localdomain
TYPE=Ethernet

DNS in the wild:

Quote:

@ NS ns1.domainpeople.com
@ NS ns2.domainpeople.com
@ MX 10 mail.mydomain.com
www CNAME mydomain.com
@ A 76.76.76.76
mail A 76.76.76.76
webmail A 76.76.76.76

(this is how the registrar does their DNS management web page)

/etc/named.conf

Code:

options {
       directory "var/named";
       dump-file "var/named/data/cache_dump.db";
       statistics-file "/var/named/data/named_stats.txt";
       forwarders { 204.244.3.129; 204.244.3.130; };
       listen-on { 127.0.0.1; };
       allow-transfer { none; };
       version "There is no spork.";
};
include "/etc/rndc.key";
zone "mydomain.com" {
        type master;
        file "mail.mydomain.com.vn";
};

/var/named/mail.mydomain.com.vn

Code:

@       IN      SOA     mydomain.com. mail.mydomain.com. (
                                10118      ; Serial
                                43200      ; Refresh
                                3600       ; Retry
                                3600000    ; Expire
                                2592000 )  ; Minimum
;       Define the nameservers and the mail servers
                IN      NS      10.177.23.202
                IN      A       10.177.23.202
                IN      MX      10 mail.mydomain.com.

Can anyone spot what it is I am doing wrong? It's starting to feel like a flashback of school, where the teacher comes up behind you and points out the missing period or semicolon in one line of code that you have been trying to debug for three hours.

thorng · #2 (**permalink**) 08-18-2009, 05:32 PM

1. Zimbra should be using the internal DNS Server 10.177.23.202? in resolv.conf
2. A record for mail.mydomain.com. is missing from your internal DNS map.

phoenix · #3 (**permalink**) 08-18-2009, 11:32 PM

Your hosts file is also incorrect, it should contain only the following:

Code:

127.0.0.1	localhost.localdomain	localhost
192.168.5.5 	mail.mydomain.com	mail

When you've made the changes you can check the configuration with the following commands (run on the Zimbra server):

Code:

cat /etc/hosts
cat /etc/resolv.conf
dig yourdomain.com mx
dig yourdomain.com any
host `hostname`  <-- use that exact command with backticks not single quotes

Post the output of those commands if you still have problems.

Mistoffeles · #4 (**permalink**) 08-19-2009, 09:26 AM

ok, I don't quite grok the format of the .vn file, I just copied what was in the article about Split DNS for Zimbra. All my previous experience with DNS has been using the web interface at domainpeople.com.

I have an A record, IN A 10.177.23.202, so what am I missing thorng?

phoenix · #5 (**permalink**) 08-19-2009, 09:34 AM

Quote:

Originally Posted by Mistoffeles

I have an A record, IN A 10.177.23.202, so what am I missing thorng?

Why do you have an A record pointing to that IP address when, according to what you've posted in the hosts file, your internal IP is 192.168.5.5?

Mistoffeles · #6 (**permalink**) 08-19-2009, 09:48 AM

Old address in the local network, as compared to new address in the colocation site.

~8/

phoenix · #7 (**permalink**) 08-19-2009, 09:58 AM

The split DNS records should point to the internal IP address of your Zimbra server and should be reflected in the hosts file. Post the output of the commands I've given you earlier.

Mistoffeles · #8 (**permalink**) 08-19-2009, 10:07 AM

ok, made a bunch of changes including one that nobody mentioned, but that I was able to see more clearly after a (somewhat) good night's sleep (/etc/sysconfig/network):

/etc/resolv.conf

Code:

nameserver 192.168.5.5
search mydomain.com

/etc/hosts

Code:

127.0.0.1	localhost.localdomain	localhost
192.168.5.5	mail.mydomain.com	mail

/etc/nsswitch.conf

Code:

hosts:	files dns

/etc/sysconfig/network

Code:

NETWORKING=yes
NETWORKING_IPV6=no
HOSTNAME=mail.mydomain.com
DNS1=192.168.5.5

/etc/sysconfig/network-scripts/ifcfg-eth0

Code:

DEVICE=eth0
BOOTPROTO=none
BROADCAST=192.168.5.255
HWADDR=00:1b:fc:f3:34:4c
IPADDR=192.168.5.5
NETMASK=255.255.255.0
NETWORK=192.168.5.0
ONBOOT=yes
GATEWAY=192.168.5.1
TYPE=Ethernet

DNS in the wild:

Quote:

@ NS ns1.domainpeople.com
@ NS ns2.domainpeople.com
@ MX 10 mail.mydomain.com
www CNAME mydomain.com
@ A 76.76.76.76
mail A 76.76.76.76
webmail A 76.76.76.76

(this is how the registrar does their DNS management web page)

/etc/named.conf

Code:

options {
       directory "var/named";
       dump-file "var/named/data/cache_dump.db";
       statistics-file "/var/named/data/named_stats.txt";
       forwarders { 204.244.3.129; 204.244.3.130; };
       listen-on { 127.0.0.1; };
       allow-transfer { none; };
       version "There is no spork.";
};
include "/etc/rndc.key";
zone "mydomain.com" {
        type master;
        file "mail.mydomain.com.vn";
};

/var/named/mail.mydomain.com.vn

Code:

@       IN      SOA     mydomain.com. mail.mydomain.com. (
                                200908190943    ; Serial number
                                1d              ; Refresh
                                1d              ; Retry
                                4w              ; Expire
                                1h      )       ; Minimum cache
;       Define the nameservers and the mail servers
                IN      NS      192.168.5.5
mail            IN      A       192.168.5.5
                IN      MX      10 mail.mydomain.com.

Now all I get is:

; <<>> DiG 9.3.4-P1 <<>> mail.mydomain.com mx
;; global options: printcmd
;; connection timed out; no servers could be reached

; <<>> DiG 9.3.4-P1 <<>> mydomain.com mx
;; global options: printcmd
;; connection timed out; no servers could be reached

*sigh*

phoenix · #9 (**permalink**) 08-19-2009, 10:10 AM

You're missing three of the commands that I asked for, please run them.

thorng · #10 (**permalink**) 08-19-2009, 11:24 AM

You are not providing the complete picture for your Internal network. Don't you have an Internal DNS already? Is Zimbra the only server in your environment?

If you are try to bring up the Internal DNS on Zimbra. most of these changes looks okay except you need to move the MX line above mail. The MX is for the domain and not the mail server. Then you just need to start the named service.

Zimbra

Downloads

Product Information

Toolbox

Why Join?