Breadcrumbs

Creating DNS forward zones in NIOS (2526)

Scenario

Your organization has formed a new partnership with the company ACME Corporation. As part of the partnership, you need to make sure your users can reach the private namespace acme.corp. Please configure the Grid to forward DNS queries to the ACME Corporation name server(s).

Estimate Completion Time

  • 15 to 20 minutes

Credentials

Description

Username

Password

URL or IP

Grid Manager UI

admin

infoblox

https://10.100.0.100/

Requirements

  • Administrative DNS access to the Grid

Learning Content

Lab Initiation

Access jump-desktop

Once the lab is deployed, you can access the virtual machines required to complete this lab activity. To initiate the lab, click on the jump-desktop tile and login to the Linux UI:

image-20231130-134540.png

Username: training

Password: infoblox

Initiate lab

To initiate the lab, double-click the Launch Lab icon on the Desktop.

Launch Lab
Launch Lab

Choose the lab number from the list and click OK.

image-20231122-140156.png

After clicking OK, you will see a pop-up message with a brief description of the lab task. If the description looks correct, click Yes to continue lab initiation.

image-20231122-140739.png

Lab initiation will take a couple of minutes to finish.

Once complete, you will see another pop-up message with the login credentials and the URL for the Grid Manager’s User Interface. Note that the credentials may differ from those from prior labs.

Screenshot 2024-05-06 at 3.16.57 PM.png


Tasks

  1. Verifying members have recursion enabled.

  2. Creating a forward zone.

Task 1: Verifying recursion is enabled on members

You know the members ibns1 and ibns2 will be performing the forwarding. Please verify that these two members have recursion enabled, in order to forward to the remote server properly.

Task 2: Creating a forward zone

The private namespace hr.techblue.io is hosted by the ACME Corporation name server ginan.techblue.io. Use the following command on the jump-desktop VM to identify the current IP address of ginan.techblue.io: dig +short ginan.techblue.io. Please configure the Grid so that members ibns1.techblue.net and ibns2.techblue.net will forward all DNS queries destined for hr.techblue.io to the correct destination.

Solutions

Task 1 Solution: Verifying recursion is enabled on members

Recursion must be enabled on DNS servers for forwarding to work. We need to verify that recursion is configured correctly

  1. Navigate to Data Management  DNS Zones

  2. Click Grid DNS Properties from the toolbar

  3. In the Queries tab, scroll down and verify Allow Recursion box is checked

  4. Check this configuration at the member level (Data Management DNS Members) as well.

  5. The DNS service may need to be restarted, but we can restart it after the next Task where we create the Forward zone.

Task 2 Solution: Creating a forward zone

  1. Lookup the IP address for ginan.techblue.io (you can use the dig +short ginan.techblue.io. command in a terminal on jump-desktop)

  2. Under Data Management DNS Zones, click + dropdown and choose Forward Zone. The Add Forward Zone Wizard appears

  3. In Step 1 of the wizard, leave the radio button set to Add a forward forward-mapping zone, and click Next

  4. In Step 2, for Name, enter hr.techblue.io

  5. Leave the remaining settings unchanged and click Next

  6. In Step 3, select Use this set of name servers, click on the Add (+) icon

  7. For the Name Server Name, enter ginan.techblue.io

  8. For the Name Server Address, enter the IP address we obtained in step 1

  9. Check the box for Use forwarders only

  10. Click Next

  11. In Step 4 of the wizard, select Use this set of name servers and click on the Add (+) icon

  12. Select ibns1.techblue.net from the name server list

  13. Click on the Add (+) icon again

  14. Select ibns2.techblue.net from the name server list

  15. Click Save & Close

  16. Restart Services from the notification tab

  17. The Zones window now displays the new hr.techblue.io forward zone