FusionForge

Difference between revisions of "DNS"

From FusionForge Wiki
Jump to: navigation, search
(Bind configuration)
(Bind configuration: Validation DNS config with bind9)
 
Line 18: Line 18:
 
$TTL  3600              ; non-slaves refresh after 1 hour (e.g.: ISPs)
 
$TTL  3600              ; non-slaves refresh after 1 hour (e.g.: ISPs)
 
@      IN      SOA ns1.domain.tld. root.domain.tld (
 
@      IN      SOA ns1.domain.tld. root.domain.tld (
                 2015092500 ; serial (YYMMDDxx)
+
                 2015092501 ; serial (YYMMDDxx)
 
                 3600      ; slaves refresh after 1 hour
 
                 3600      ; slaves refresh after 1 hour
 
                 3600      ; slaves retry after 1 hour on failure
 
                 3600      ; slaves retry after 1 hour on failure
Line 24: Line 24:
 
                 3600      ; minimum negative cache TTL of 1 hour
 
                 3600      ; minimum negative cache TTL of 1 hour
 
         )
 
         )
NS      ns1.domain.tld.
+
        NS      ns1.domain.tld.
NS      ns2.domain.tld.
+
        NS      ns2.domain.tld.
  
 
         A 123.123.123.123
 
         A 123.123.123.123
Line 31: Line 31:
 
scm    CNAME  @
 
scm    CNAME  @
 
lists  A      123.123.123.123
 
lists  A      123.123.123.123
lists  MX 10  123.123.123.123
+
lists  MX 10  @
 
users  A      123.123.123.123
 
users  A      123.123.123.123
users  MX 10  123.123.123.123
+
users  MX 10  @
 
*      A      123.123.123.123
 
*      A      123.123.123.123
 
</pre>
 
</pre>
Line 44: Line 44:
 
};
 
};
 
</pre>
 
</pre>
 +
* Restart bind:
 +
service bind9 restart
  
 
[[Category:Admin_documentation]]
 
[[Category:Admin_documentation]]

Latest revision as of 11:41, 25 September 2015

Domain structure

FusionForge recommends that you reserve a domain or subdomain for it, for instance:

  • forge.yourdomain.tld : the web interface (http and https)
  • scm.forge.yourdomain.tld : access to source repositories e.g. Git and SVN (https, ssh, rsync, xinetd)
  • lists.forge.yourdomain.tld : mailing lists (smtp and https)
  • users.forge.yourdomain.tld : user e-mail aliases (smtp)
  • *.forge.yourdomain.tld : wildcard for project web pages

Bind configuration

Here is a sample configuration for a single server on 123.123.123.123 and domain forge.domain.tld.

On your DNS server:

  • Add a zone to /etc/bind/master/forge.domain.tld:
; -*- dns -*-
$TTL   3600               ; non-slaves refresh after 1 hour (e.g.: ISPs)
@       IN      SOA ns1.domain.tld. root.domain.tld (
                2015092501 ; serial (YYMMDDxx)
                3600       ; slaves refresh after 1 hour
                3600       ; slaves retry after 1 hour on failure
                1209600    ; slaves expire after 2 weeks
                3600       ; minimum negative cache TTL of 1 hour
        )
        NS      ns1.domain.tld.
        NS      ns2.domain.tld.

        A 123.123.123.123

scm    CNAME  @
lists  A      123.123.123.123
lists  MX 10  @
users  A      123.123.123.123
users  MX 10  @
*      A      123.123.123.123
  • Reference it in /etc/bind/named.conf.local:
zone "forge.domain.tld" {
     type master;
     file "/etc/bind/master/forge.domain.tld";
     allow-query { any; };
};
  • Restart bind:
service bind9 restart