Skip to main content

IPV6 DNS INSTALLATION GUIDE






IPV6 DNS INSTALLATION MANUAL
BIND ON UBNUTU LINUX


This Document will help you to install the IPv6 DNS Server on UBUNTU LINUX. The same method can also be used for the installation on other Linux Flavors . The Software described in the document is bind version 9 . All the Bind 9 and above are supporting IPv6 features.
Bind installation on Ubuntu Linux:
1.    Install the Ubnutu Linux server 12.04 LTS server .
The OS is available on the following website www.ubuntu.com

The Operating system is available for 32 bit or 64 bit Architecture. The Operating System is available under Open Source Platform.

Install  the OS with Std installation features.

2.    The BIND installation

The bind software can be installed on the Server using following commands
            # sudo  apt-get install bind9

3.    After installation assign the IP address i.e. ipv6 Address to the interface.
The file which we need to be edited








This is the file we need to edit for ipv6 address is /etc/network/interfaces
# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).
# The loopback network interface
auto lo
iface lo inet loopback
# The primary network interface
auto eth0
#START OF IPV6 CONFIGRATION
iface eth0 inet6 static
pre-up modprobe ipv6
address 2001:0db8:0000:0000:0000:0000:0000:0005
netmask 48
gateway 2001:0db8:0000:0000:0000:0000:0000:0001
### END IPV6 configuration
iface eth0 inet static
        address 100.100.100.5
        netmask 255.255.255.0
        network 100.100.100.0
        broadcast 100.100.100.255
        gateway 100.100.100.1
        # dns-* options are implemented by the resolvconf package, if installed
        dns-nameservers 100.100.100.5
        dns-search test.com


the named.conf.options file should contain the following : /etc/bind/named.conf.options
acl v6range {
  2001:DB8::/32;

};
options {
        directory "/var/cache/bind";
        // If there is a firewall between you and nameservers you want
        // to talk to, you may need to fix the firewall to allow multiple
        // ports to talk.  See http://www.kb.cert.org/vuls/id/800113
    
        //========================================================================
        // If BIND logs error messages about the root key being expired,
        // you will need to update your keys.  See https://www.isc.org/bind-keys
        //========================================================================
        dnssec-validation auto;
        allow-query { v6range; };
        auth-nxdomain no;    # conform to RFC1035
        listen-on-v6 { any; };
};


The Resolve.conf file should contain following lines
/etc/resolv.conf
# Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)
#     DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
nameserver 2001:DB8::0005;
search test.com
After this we can restart the networking services & named services using following commands
#service bind9 restart.
The nslookup screenshot for the DNS Server is shown below:






Screenshot -1






The PC/Client Desktop needs to be configured using IPv6 DNS Server.





After assigning the IPv6 Address we can browse the following url http://test-ipv6.com to test the IPv6 DNS Server &

IPv6 Traffic.




We can also check the other tab (Summary) in the URL http://test-ipv6.com






Note : If there is firewall between Client and DNS Server allow the port no 53 on UDP and TCP .




*****






Comments

Post a Comment

Popular posts from this blog

Password Expiry notification for the users in zimbra 8.x within 7 Days for the email users

This Script will run as cron tab daily basis and it will alert the users for whom password is going to expire within 7 days. It will also alert admin for the users for whom password expired. Kindly replace the domain.com with your own domain name and the  /opt/zimbra/postfix-2.10.3.2z/sbin/sendmail  path to the actual path of postfix #!/bin/bash #Script for zimbra password expiry email notification. # Meant to be performed as daily cronjob run as zimbra user.  # redirect output to a file to get a 'log file' of sorts. # Time taken of script; echo "$SECONDS Started on: $(date)" # Set variables: # First notification in days, then last warning: FIRST="7" LAST="3" # pass expiry in days, we are assuming passwd exiry is 150 Days POLICY="150" # Sent from: FROM="admin@domain.com" # Get all users - it should run once only. USERS=$(ionice -c3 /opt/zimbra/bin/zmprov -l gaa domain.com) #Todays date, in seconds: DATE...
Post a Comment
Read more

How to Create a Delegated Admin Account in Zimbra 8.x

How to Create a Delegated Admin Account in Zimbra 8.x. Create a File as shown below with the contents .  Replace the domain.com and helpdesk Email id with your domain and helpdesk (Delegated Admin ) Name. #vi admindelegate #!/bin/bash # $1 domain.com # $2 helpdesk zmprov ma $2 zimbraIsDelegatedAdminAccount TRUE zmprov ma $2 zimbraAdminConsoleUIComponents cartBlancheUI zimbraAdminConsoleUIComponents domainListView zimbraAdminConsoleUIComponents accountListView zimbraAdminConsoleUIComponents DLListView zmprov ma $2 zimbraDomainAdminMaxMailQuota 0 zmprov grantRight domain $1 usr $2 +createAccount zmprov grantRight domain $1 usr $2 +createAlias zmprov grantRight domain $1 usr $2 +createCalendarResource zmprov grantRight domain $1 usr $2 +createDistributionList zmprov grantRight domain $1 usr $2 +deleteAlias zmprov grantRight domain $1 usr $2 +listDomain zmprov grantRight domain $1 usr $2 +domainAdminRights zmprov grantRight domain $1 usr $2 +configureQuota zmpr...
Post a Comment
Read more

DNS AMPLIFICATION LIMITS AND SOLUTIONS - DNSCURVER ALTERNATE TO DNSSEC

What is   DNS Amplification Attack   ? Before we understand the DNS Amplification Attack, lets learn about DDoS first. Distributed denial-of-service Attack (DDoS), is a cyber threat looming large on Organizations. It adversely affects the online productivity of individuals too. Anyone who relies on their Internet presence to generate revenue can be a target. The Security tangent comes in question here. First, let us understand what DoS attack is. A denial of service (DoS) attack is a malicious attempt to make a server or a network resource unavailable to users. This is usually performed by interrupting or suspending the services of a host connected to the Internet. Distributed DoS (DDoS) attacks are DoS attacks launched from multiple hosts simultaneously. The flood of incoming messages to the target system forces it to shut down or choke bandwidth. Hence, denying service to the legitimate users. The domain name system (DNS) is one of the most critical ser...
Post a Comment
Read more