Open port 53 in the firewall for both UDP and TCP with the commands in Listing 7. In this step we configure the firewall and check the DNS service. > ic-create-instance.cmd -u -g -w -k 20036705 -n DNS_Server -t "COP32.1/2048/60" -L 141 -m " Īfter saving the changes to nf, restart the named server: # service named restartĪt this point the BIND server is listening for outside requests, but the firewall is blocking those requests from being delivered. Listing 4≼reating a DNS server with the SCE command-linetool. The command in Listing 4 shows how to create the virtual machine with the SCE command line. Use the ic-describe-addresses command to check the status of the request, and wait for the state to be FREE, indicating that the address is available to be associated with a virtual machine instance. The IP address will take a short period of time to be allocated. This command will give an address ID in the response output, as shown in Listing 3. Use the ic-describe-address-offerings command to find an alternative offering ID if you don't want to use the Singapore data center. The -O parameter is the offering ID 20027868 is the ID for an IP address on a private VLAN in Singapore. If you don't want to use Singapore, use the ic-describe-locations command to find the ID for another data center. The -L parameter is the data center ID 141 is the ID for the Singapore data center. The -x parameter lists the VLAN ID ( ) this is specific to your customer account. In the command in Listing 3, substitute your own username for, password file for, and password phrase for. The request has been submitted successfully.ID: 344533InstanceId:State: NEWExecuting AllocateAddress finished > ic-allocate-address.cmd -u -g -w -x -L 141 -O 20027868Executing action: AllocateAddress. Listing 3≺llocating an IP address with the SCE command-linetool. Execute the command on your local workstation. Reserve an IP address on the VLAN with the command in Listing 3. You can use either the SCE web user interface or API to create the virtual machine instance. It should be a hardened image like the IBM firewall in the image catalog. The VPN server or firewall for the VPN is a good choice. Provision an instance of the IBM Firewall image with two IP addresses. We also install and start the BIND named service. In this step, we provision a virtual machine for the DNS server. Step 1: Provision the Server and Install BIND If you don't want to use a VLAN, you'll have to adapt some of the following steps to suit your own network configuration. All SCE accounts come with a VLAN at each data center, but you don't generally need a VLAN to run a DNS server. See the IBM SmartCloud Enterprise command-line tool reference (user login required) for details on setup and use. This article isn't intended to be a tutorial for using the SCE command line we discuss only particular points related to the SCE command-line tool. The command-line instructions in this article are for Windows, but similar commands are available for Linux. If you prefer to use the cloud web portal, you won't need this. If you created the SSH key through the SSH portal and saved the downloaded file, you have these. The public key should be stored on the SCE server and the private key saved on your local workstation. Sign up if you don't have an account, or you can probably perform similar steps on another cloud. To follow the instructions in this section, you'll need the following things: We'll also briefly describe the dig command for doing DNS lookup and the rndc management utility. Several executable files are packaged with BIND the main file that concerns us is the named DNS service. After that, some configuration is necessary to enable the server to listen for incoming requests and to act as an authoritative server for your domain. It's the most popular DNS server on the Internet and can be installed easily on Linux systems via the package management system. Learn More Buy DNS Server Setup DNS Server SetupīIND is an open source DNS server software package. Developing and Hosting Applications on the Cloud
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |