Following are the various options and configuration parameters that you can view or modify for the DNS server:
Zone List: This list displays all zones that are serviced by the selected server and the server's role for each zone. To change the role of the selected server for any zone in the list, change the zone's configuration.
DNS Server IP Address: Displays the IP addresses that the DNS server listens on for queries.
DNS Server Domain Name: Displays the domain name of the DNS server.
Comments: You can type up to 256 characters of information about the name server in this field.
Forwarding List: Specifies the IP addresses of DNS servers to which queries will be forwarded from this server when it is unable to resolve that query from its authoritative data or cache. Unresolved queries are sent to these servers before they are sent to the root servers.
No-Forward List: Specifies a list of domain names whose unresolved queries will not be forwarded to other DNS servers.
Events Log: Specifies the degree of event data the server should collect. Major or critical events denote a significant change in the state of server processing. The events log can be configured for the following modes of event generation:
None: Turns off event logging (default)
Major Events: Logs only critical events
All: Logs both major and minor events
Audit Log: Enable this option to make the selected server log audit trails and events.
The following options can be configured only for DNS servers running on NetWare® 6.5:
SNMP Traps Option: SNMP traps are generated for various events depending on the configuration for this option. You can generate SNMP traps in the following modes:
None: Turns off SNMP traps generation (default)
Major Events: Generates SNMP traps only for critical events
All: Generates SNMP traps for both major and minor events
Maximum Cache Size: Specifies the maximum amount of memory the server can use to cache responses. When the amount of data in the cache reaches this limit, the server causes existing records in cache to expire prematurely so that the limit is not exceeded. The default value is 0, which means an unlimited cache. That is, records are purged from the cache only when their TTLs expire.
Max Recursion Lookups: Allows you to configure the maximum number of simultaneous recursive lookups the server will perform on behalf of the clients. The default is 1000. The value of this option might need to be decreased on hosts with limited memory because each recursive lookup uses about 20 kilobytes of memory.
Zone Out Filter: Allows you to configure which hosts are allowed to receive zone transfers from the server. If hosts are not specified, the default is to allow transfers from all hosts. The Zone Out filter can be specified in the address match list format for the server.
The value specified for the zone overrides the value specified for the server.
Allow Recursion: Specifies which hosts are allowed to submit recursive queries to the server. If hosts are not specified, the default is to allow recursive queries from all hosts. Allow recursion can be specified in the address match list format.
NOTE:If you disallow recursive queries for a host, it prevents the host from retrieving data that is already in the server's cache.
Query Filter: Allows you to configure which hosts are allowed to query the server. If hosts are not specified, the default is to allow queries from all hosts. Query Filter can be specified in the address match list format.
The value specified for the zone overrides the value specified for the server.
Also Notify: Defines a global list of IP addresses of name servers that also receive notify messages when a fresh copy of the zone is loaded, in addition to the servers listed in the zone's NS records. This helps to ensure that the copies of the zones quickly converge on stealth servers.
When a zone's notify option is set to, notify messages are not sent to the IP addresses in the global Also Notify list for that zone. The default is the empty list (no global notification list).
The value specified for the zone overrides the value specified for the server.
Black Listed Servers: Defines the list of addresses that the server does not accept queries from or use to resolve a query. Queries from these addresses are not responded to. The default is none.
Additional-from-auth, additional-from-cache: These options control the behavior of an authoritative server when answering queries that have additional data, or when following CNAME and DNAME chains.
When the option is set to yes and a query is being answered from authoritative data, the additional data section of the reply is filled in, using data from the other authoritative zones.
When theoption is set to yes and a query is being answered from authoritative data, the additional data section of the reply is filled in, using data from the cache.
Allow-notify : Specifies the hosts that are allowed to notify the server about changes in a secondary zone serviced, in addition to the zone masters. If hosts are not specified, the default is to process notify messages only from a zone's master.
The value specified for the zone overrides the value specified for the server.
Cleaning-interval: Specifies the time interval, in minutes, at which the server removes expired resource records from the cache. If it is set to 0, no periodic cleaning occurs. The default value is 60 minutes.
Forward: This option can be configured only if the Forwarding list is not empty. If the value is set to first (default), the server queries the forwarders first, and if that does not answer the query, the server then looks for the answer. If the value is set to only, the server will only queries the forwarders.
Lame-ttl: Sets the number of seconds to cache a lame server indication. 0 disables caching. This is not recommended. The maximum value is 1800 (30 minutes).
Listen-on: Specifies the interfaces and ports that the server will answers queries from. It takes an optional port and an address match list. If a port is not specified, port 53 is used.
Max-cache-ttl: Sets the maximum time for which the server will caches ordinary (positive) answers.
Max-ncache-ttl: The server stores negative answers to reduce network traffic and increase performance. This option is used to set a maximum retention time for these answers in the server. The maximum value is 7 days.
Minimal-responses: If this option is set to yes, while generating responses the server will adds records to the authority and additional data sections only when they are required (for example, delegations, negative responses). This might improve the performance of the server.
Notify: If this option is set to yes, DNS notify messages are sent when a zone for which the server is authoritative for changes. The messages are sent to the servers listed in the zone’s NS records (except the master server identified in the SOA MNAME field) and to any servers listed in the also-notify option. If this option is set to explicit, notifications are sent only to servers explicitly listed by using also-notify. If this option is set to no, no notifications are sent.
Notify-source: Determines the local source address, and optionally the UDP port, that will be used to send notify messages. The slave servers should also be configured to receive notify messages from this address.
Novell_dyn-reconfig: Specifies the time interval at which dynamic reconfiguration will takes place. The minimum value is 10 minutes and the maximum is 24 hours.
Provide-ixfr : Determines whether the local server, acting as master, will respond with an incremental zone transfer when the given remote server, a slave, requests it. If this option is set to yes, incremental transfer is provided whenever possible. If this option is set to no, all transfers to the remote server are non-incremental.
Query-source: Specifies the address and port used for querying other name servers, if the server does not know the answer to a query.
Recursion: If this option is set to yes, and a DNS query requests recursion, then the server attempts to do everything required to answer the query. If this option is set to no, and the server does not already know the answer, it will returns a referral response.
Request-ixfr: Determines whether the local server, acting as a slave, will request incremental zone transfers from the given remote server, a master.
RRset-order: Permits the ordering of the records in a multiple record response to be configured. If this option is set to fixed, records are returned in a fixed order. If this option is set to random-cyclic, the server chooses a record within the RRset as the starting point and returns the records in the starting order at that point.
Serial-query-rate: Slave servers periodically query the master servers to find out if the zone serial numbers have changed. Each query uses a small amount of the slave server’s network bandwidth. You can limit the rate at which queries are sent and therefore limit the amount of bandwidth used. The value can be an integer, which is the maximum number of queries sent per second.
Tcp-clients: Specifies the maximum number of simultaneous TCP client connections that the server accepts.
Transfer-format: Zone transfers can be sent by using two different formats, one-answer and many-answers. This option is used on the master server to determine the format of zone transfer. One-answer uses only one DNS message per resource record transferred and many-answers places as many resource records as possible into a message. Many-answers is more efficient.
Transfer-source: Determines the local address that is bound to the IPv4 TCP connections used to retrieve the zones transferred inbound by the server. It also determines the source IPv4 address, and optionally the UDP port, used for the refresh queries and forwarded dynamic updates.
Transfers-in: Specifies the maximum number of inbound zone transfers that can concurrently run. Increasing the transfers-in might speed up the convergence of the slave zones, but it might also increase the load on the local system.
Transfers-out: Specifies the maximum number of outbound zone transfers that can run concurrently. Zone transfer requests in excess of the limit are refused.
Transfers-per-ns: Specifies the maximum number of inbound zone transfers that can be transferred concurrently from a given remote name server. Increasing the value of this option might speed up the convergence of slave zones, but it might also increase the load on the remote name server.
Zone-statistics: Zone-statistics can be configured to yes so that the server will collects statistical data for the zones.
The value specified for the zone overrides the value specified for the server.
The following options and configuration parameters can be viewed or modified for the DNS Zone:
Zone Type: Specifies whether the zone is a primary, secondary or forward zone. If this option is set as primary, the Novell DNS servers act as primary servers for this zone. If this option is set as secondary, the servers act as secondary servers. For a forward zone, the Forward DNS server forwards queries to other name servers.
Zone Master IP Address: Specifies the IP address of the primary DNS server for the secondary zone.
Available DNS Servers: Displays all the available DNS servers that can service the zone.
Authoritative DNS Server: Displays all servers that are servicing the zone. All servers in this list are authoritative for the zone. For a primary zone, all servers listed are passive primary servers except the one specified in the field.
The server in the field act as a designated primary server. For a secondary zone, all servers listed are passive secondary servers except the one specified in the field. The server in the field act as the designated secondary server.
Designated Primary (for Primary Zone): Specifies the designated primary server for the zone. If you specify a server as designated primary, it is the server designated for receiving dynamic updates.
Designated Secondary (for Secondary Zone): Specifies the designated secondary server for the zone. If you specify a server as designated secondary, it is the server designated for receiving zone-in transfers.
Comments: You can type up to 256 characters of information about the name server in this field.
Forward Zone: The server forwards all requests to another DNS server and caches the results. There is no difference between a designated server and other servers.
Empty Forwarder List : An empty forwarder list is used for domain delegation (child zones). With this option, global forwarders are ignored and NS records are used for domain delegation.
Forward: Specifies the IP address to be used for forwarding. Click the button, provide the IP address, then click .
Only : Controls the behavior of queries for which the server is not authoritative and the answers do not exist in the cache. If you specify the value as , the server queries only the forwarders list
First : Controls the behavior of queries for which the server is not authoritative and the answers do not exist in the cache. If you specify the value as , the server queries the forwarders list first and, if the answer is not found, the server searches for the answer
NOTE:This option is available only if one or more IP addresses are added in the forward list
Zone Out Filter: Specifies which hosts are authorized to do a zone out transfer for this zone from primary servers of this zone. If this field is not configured, each DNS server servicing this zone uses its own Zone Out filter list value (if configured). Otherwise, the default value is used.
NOTE:Zone Timer is used to initiate the zone maintenance. This value is not configurable (it is set to 15 minutes). This timer is set when the zone gets the first dynamic update. The zone maintenance is done at the expiry of this timer or during dynamic reconfiguration, whichever happens first. The zone timer is useful when the dynamic reconfiguration is set to a higher value.
Zone Master: Displays the domain name for the master server of the zone (also called the designated primary server).
E-mail Address: Displays the e-mail address (with “@” replaced by “.”) of the person responsible for this zone.
Serial Number: Used for zone data versioning. Serial numbers are automatically incremented to reflect any changes to the zone data such as creation, deletion, or modification of resource records; dynamic updates; and zone transfers. This parameter is primarily used to notify the slave zones of a change in the zone data.
Refresh: The refresh interval indicates the time interval at which the secondary server of this zone checks with the master server to see whether its data is up-to-date. If the data in the master server is the latest, the secondary server transfers it from the master server. The default is 180 minutes.
Retry: If the slave fails to contact the master server after the refresh period, then it starts contacting the master server after every retry interval. The default is 60 minutes.
Expire: If the slave fails to contact the master server for expiration, the slave server expires this zone data. The default is 168 hours.
Minimum TTL: Specifies the minimum TTL value for the resource record. This value applies to all resource records in the zone data. The name server supplies this TTL in query responses, allowing other servers to cache the data for the TTL interval. The default is 24 hours.
Query Filter: Allows you to configure which hosts are allowed to query the servers for data in this zone. If a value is not specified, the default is to allow queries from all hosts. Query filter can be specified in the address match list format. If this field is not configured, each DNS server servicing this zone uses its own query filter list value if it is configured. Otherwise, the default value is used.
Also Notify: Defines a list of IP addresses of name servers that also receive notify messages whenever a fresh copy of the zone is loaded, in addition to the servers listed in the zone's NS records. This helps to ensure that copies of the zones quickly converge on stealth servers.
The value specified for the zone will overrides the value specified for the server. When a zone's notify option is set to no, no notifications are sent to any server about changes in the zone data. The default is an empty list.
Allow Update: Specifies which hosts are allowed to submit dynamic DNS updates for primary zones. The default is to deny updates from all hosts. This control list is applicable only to RFC 2136 standards-based dynamic updates.This option can be configured only for a primary zone.
NOTE:Allow Update with keys option is supported for Linux DNS only.
Allow-notify: Specifies the hosts that are allowed to notify slaves of a zone change in addition to the zone masters. This can be configured only for a secondary zone. If this field is not configured, each DNS server servicing this zone uses the allow-notify value if it is configured. Otherwise, the default value is none.
Notify: If this option is set to yes, DNS notify messages are sent by the authoritative servers of this zone when the zone data changes. The messages are sent to the servers listed in the zone’s NS records (except the master server identified in the SOA MNAME field) and to other servers listed in the also-notify option. If this option is set to explicit, notifications are sent only to the servers explicitly listed using also-notify. If this option is set to no, no notifications are sent.
Notify-source: Determines the local source address, and optionally UDP port, that is used to send NOTIFY messages when this zone data changes. The slave server should also be configured to receive notify messages from this address.
Transfer-source: Determines the local address that is bound to the IPv4 TCP connections used to retrieve the zones transferred inbound by the server. It also determines the source IPv4 address, and optionally the UDP port, used for the refresh queries and forwarded dynamic updates.
Zone-statistics: Zone-statistics can be configured to yes so that the server collects statistical data for the zone.
The value specified for the zone will overrides the value specified for the server.