The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Zone Check/Transfer?

Discussion in 'General Discussion' started by coderoyal, Apr 30, 2011.

  1. coderoyal

    coderoyal Well-Known Member

    Joined:
    Mar 8, 2005
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    6
    Hi!

    I have several website I created hosted on our personal cPanel server that are based on Romanian domain names (Ana Porgras Online , Sandra Izbasa Online ) and I noticed a request from the Romanian Top Level registry that I have no understanding of and am wondering if anyone that knows more about DNS can help me understand what they are asking me to do? I am an admin of the cPanel server and can make changes as needed.

    "Both name servers need permanent IP connectivity to the Internet (for queries and zone transfers) in order that they can be easily checked for operational status and database accuracy at any time by ROTLD registry."

    "At the end of each month a periodic zone check is done for all the domains to collect errors, host count and other domain statistics. ROTLD kindly ask to allow zone transfer for the machines from 192.162.16.0/24 IP address class."

    Nothing urgent, but if anyone has a chance to explain, I would greatly appreciate!

    WHM 11.28.87
    REDHAT Enterprise 5.6 x86_64 standard on cpanel

    Alan
     
    #1 coderoyal, Apr 30, 2011
    Last edited: Apr 30, 2011
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Are you trying to use a backend IP for the nameserver registration? The IPs for any DNS zones must be public IP addresses. Normally, 192.x.x.x IPs are backend, private IP addresses. If you are using NAT-based setup where the backend IP routes to a frontend IP, you will need to register the domain nameservers with the frontend, public IP address and set the DNS zones to use those frontend IPs.
     
  3. coderoyal

    coderoyal Well-Known Member

    Joined:
    Mar 8, 2005
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    6
    Hi!

    Thanks for the reply. No, the registrations are all based on public accessible IP addresses. The dns servers are 66.186.176.232 and 66.186.176.231.

    The 192 address range they gave is public, so I don't think they are referring to backend ip addressing.


    % Information related to '192.162.16.0 - 192.162.16.255'

    inetnum: 192.162.16.0 - 192.162.16.255
    netname: ICI-NET
    descr: National Institute for R&D in Informatics (ICI)
    descr: RoTLD
    descr: str. Maresal Averescu 8-10
    country: ro
    admin-c: ES16
    tech-c: SI1
    status: ASSIGNED PA
    remarks: object maintained by ro.rnc local registry
    mnt-lower: AS3233-MNT
    mnt-by: AS3233-MNT
    source: RIPE # Filtered

    person: Eugenie Staicut
    address: National Institute for R|&D in Informatics
    address: Bd. Averescu 8-10, Sector 1
    address: Bucharest 71316
    address: Romania
    phone: +40-21-316 07 62
    fax-no: +40-21-316 10 84
    e-mail: estaicut@rnc.ro.REMOVETHISSUFFIX
    nic-hdl: ES16
    mnt-by: AS3233-MNT
    source: RIPE # Filtered

    person: Sandu Ionut
    address: National Institute for R&D in Informatics
    address: Bd. Averescu 8-10, Sector 1
    address: Bucharest 71316
    address: Romania
    phone: +40-744-777989
    e-mail: ionut@rotld.ro
    nic-hdl: SI1
    mnt-by: AS3233-MNT
    source: RIPE # Filtered

    % Information related to '192.162.16.0/24AS3233'

    route: 192.162.16.0/24
    descr: RNC, Romanian National Computer Network for Research and Education
    origin: AS3233
    mnt-by: AS3233-MNT
    mnt-lower: AS3233-MNT
    mnt-routes: AS3233-MNT
    source: RIPE # Filtered
     
  4. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Based on the discussion on how to configure this in BIND:

    DNS BIND Zone Transfers and Updates

    In /etc/named.conf file, it has the following set:

    Code:
    allow-transfer {"none";};
    You would need to change this line to allow the IP range noted, so it would become the following then:

    Code:
    allow-transfer {192.162.16.0/24;};
    At that point, you would want to restart named service:

    Code:
    /etc/init.d/named restart
    To confirm that the allow-transfer section allows an IP range, this section discussing "address_match_list" was reviewed as well:

    http://www.zytrax.com/books/dns/ch7/address_match_list.html
     
  5. coderoyal

    coderoyal Well-Known Member

    Joined:
    Mar 8, 2005
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    6
    Ok, thank you very much for the information! I've amended each zone for the domain names and added the allow-transfer line.

    named restarted and all set.

    Thank you for the information!!
    Alan
     
Loading...

Share This Page