Re: [gentoo-server] Failover-capable DNS server?

public inbox for gentoo-server@lists.gentoo.org
 help / color / mirror / Atom feed

From: "Norman Rieß" <norman@smash-net.org>
To: gentoo-server@lists.gentoo.org
Subject: Re: [gentoo-server] Failover-capable DNS server?
Date: Tue, 22 Nov 2011 07:15:29 +0100	[thread overview]
Message-ID: <4ECB3E01.7030406@smash-net.org> (raw)
In-Reply-To: <CAA2qdGXpBUzz7Q0HQ3JqawemdQhQmBJUUEiQAGpVFMvmq2cRnQ@mail.gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 11/21/11 10:52, Pandu Poluan wrote:
> Hello all, I'm in need of some suggestions.
> 
> You see, I have 2 Internet connections with public IP addresses, let's
> say ISP A 11.22.33.44 and ISP B 22.33.44.66
> 
> Now, I want outside parties trying to connect to "target.example.com"
> by default resolves to 11.22.33.44, but if ISP A's connection goes
> down for any reason, the DNS server will instead return "22.33.44.66".
> 
> The nameserver itself will be located in the company, accessible from
> the world via "ns1.example.com" = 11.22.33.44:53 or "ns2.example.com"
> = 22.33.44.66:53. This allows the nameserver to monitor the state of
> the connections to ISP A and ISP B.
> 
> I've been perusing pages discussing BIND, and came to the conclusion
> that BIND is incapable of doing that.
> 
> Anyone can recommend me a DNS server that has such capability? Or how
> to implement this ability with maybe Python or (*shivers*) Perl?
> 
> Rgds,

Hello,

you could use another way, by switching the IP address of the DNS server
with Heartbeat acordingly. Say you have a server with IP A and another
with IP B. You can tell heartbeat to switch an IP C as second IP between
these servers. So if Server 1 ist master, it has IP A and C. If it goes
down, Server 2 will bring IP C up and become master. IP C will be you ns
dns record obviously.
You can avoid splitbrains when a network component between these
machines goes down by wiering them crossover on a second NIC.
Even saver would be a STONITH device, which kills the whole machine if
one of the servers is reachable and answers to ping but is doing crap.

A client side way would be a resolve.conf looking like this:

nameserver 11.22.33.44
nameserver 22.33.44.66
options timeout:1
search your.domain

regards,
Norman
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJOyz4BAAoJEMCA6frkLT6zcGMH/RhfutaeDKtelQsRotGDfEjb
z9dWgWJs+YBC4P16AGw9ZGEQ8b1zOjhnj4mjjkCPQohik0A4tCLHqUX0tC2QeJSN
4fErfaqInOqqPHmcvEOYBREG09dC0VoqGC9MjzvOKn2yYUbaBdt8Foc8o6DHICKi
rZMl2KGWIUUSv4/uhbaqpd3mEceqGB33XjssvYDis1douPz4TgZTexYlC/gX+OtF
l8eUDdEWy6ks+BM712CLqWAp45zgv3QPQvNQiPyOUU++LQ7vW5FLmlz6fHl9xUtw
SjqUC+9Ry17VdSTBSMtmiTZjaXoR2LFZPiVvFnIKYKvJE/Fa3sDMtLFQTF1u0SE=
=dKBC
-----END PGP SIGNATURE-----

next prev parent reply	other threads:[~2011-11-22  6:16 UTC|newest]

Thread overview: 14+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2011-11-21  9:52 [gentoo-server] Failover-capable DNS server? Pandu Poluan
2011-11-21 10:02 ` Jos Houtman
2011-11-21 10:16   ` Pandu Poluan
2011-11-21 10:03 ` [gentoo-server] " Pandu Poluan
2011-11-21 10:20   ` Kalin KOZHUHAROV
2011-11-21 10:32   ` Christian Parpart
2011-11-21 10:20 ` [gentoo-server] " Chris Firth
2011-11-21 17:16 ` Alan Hodgson
2011-11-21 17:39   ` Pandu Poluan
2011-11-21 18:19     ` Alan Hodgson
2011-11-21 18:32     ` RES: " Eduardo Schoedler
2011-11-22  1:19       ` Pandu Poluan
2011-11-22  6:15 ` Norman Rieß [this message]
2011-11-22  6:48   ` Pandu Poluan

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=4ECB3E01.7030406@smash-net.org \
    --to=norman@smash-net.org \
    --cc=gentoo-server@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox