I have two nameservers, each running physically on a different server on different networks. Now I've noticed that whenever the primary NS goes down, clients requesting authoritative NS record lookups refuse to connect to the secondary NS, which I know is certainly up and running. The secondary NS has its own zone files and when you specifically request that server to resolve NS requests, it does the work. But generic NS lookups without specifying the server appears to fail when the primary server is down.
Does anyone know what might be happening here? I know that the domain registrar has both nameservers recorded for the domains I'm trying to resolve, but what is the point of a secondary NS, when it isn't contacted when the primary nameserver is down?
I have the following three servers, which I'll call A, B, and C:
Server A - Web hosting server that uses cPanel on CentOS.
Server B - Free subdomain service (similar to afraid.org but on a much smaller scale), using PowerDNS with a MySQL database backend, on Debian.
Server C - Backup DNS server for the cPanel web hosting server, using the free cPanel "DNS Only" on CentOS.
Originally I had just A and B set up (they're two separate VPSes on the one dedicated server, I own the dedi and some friends and I have VPSes on it). Now I've got a VPS at a different data centre, and am using that for C.
To have a secondary DNS server for server B, I believe I can use MySQL replication to replicate the PowerDNS database to another server, then have a PowerDNS install on that server. My question is, is it possible to have server C as a backup DNS server for both server A (cPanel server) and server B (PowerDNS server)? ie. is there a way to check both PowerDNS and the cPanel BIND9 for domains (have them on different ports, and make one query the other if the lookup fails, perhaps)? Or perhaps use both the MySQL backend and the bind backend simultaneously in PowerDNS, and replace bind with PowerDNS (although I guess cPanel wouldn't like this)?
We currently have gps devices which report x,y coords. The devices currently report to a fully qualified name: servername.mydomain.com. And only one fully qualified name.
We would like to have redudancy, so if the main server goes down, then the secondary takes over. I assume this is accomblished via DNS.
So out first task is to create name servers at our domain registar and have them register them, for example:
Then on the both servers we setup DNS to accept the a record of servename.mydomain.com points to? This is where I get confused. Does the firstserver DNS say point to itself, and the second DNS server point to itself?
What I wanna do is synchronize both of them using rsync. Once they've got synchronized, the UK will be the primary server and US will be secondary, in case the UK goes down.
my questions are
1. Is it possible that when the UK goes down, the A records for domain.com automatically switches to the US server so it can take over while UK is down.
ie. UK ip 112.113.114.1 US ip 222.111.444.5
domain.com A records = UK ip when up... but when UK is down, A records automatically changes to US ip.
2. And when the UK server goes up again, whatever changes made to US server will be pushed to UK. May it be files, accounts or e-mails.
I.E.
UK and US are synchronized every 30mins. UK and US both have e-mails 1-10.
Just before the sync time, UK server received an e-mail 11-15 then goes down. So the US Server will take over but do not have 11-15 mails, since it was received before sync time. During the UK downtime, US server received e-mails 16-20.
When the UK server goes up, will it be possible to sync both servers that both of them will have the e-mails 1-20?
I hope you get my point...
If these are not feasible, what can you advice as an alternative solution. All I want is to avoid downtimes, especially with mails as the business relies on this.
I would like to reassure two DNS machines (a primary and a secondary) with iptables
By default I block everything, but even with rules for the port 53, it blocks the queries needing to resolve via the primary, and the secondary does not manage to transfer the zones of the primary …
DNS are on public ip, but to simplify, we are going to say that:
The primary DNS is: 192.168.0.10 The secondary DNS is: 192.168.0.20
Here are iptables rules(sliders) which I have at present:
iptables -P INPUT DROP iptables -P OUTPUT DROP iptables -P FORWARD DROP
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A OUTPUT -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -p tcp --dport 53 -j ACCEPT iptables -A INPUT -p udp --dport 53 -j ACCEPT
iptables -A INPUT -i lo --source 127.0.0.1 --destination 127.0.0.1 -j ACCEPT
Thus with these rules, I have quite a lot of problems (resolutions, transfersof zones) I found these rules on a forum, that seems to be interesting but as I do not know there not iptable, I ignore if it is what I miss or not.
For information here is all the same what I found (not tested):
#iptables -A INPUT -p tcp -s 192.168.0.20/255.255.255.255 --sport 1024:65535 -d 192.168.0.10 -dport 53 -m state state NEW,ESTABLISHED -j ACCEPT #iptables -A OUTPUT -p tcp -s 192.168.0.10/255.255.255.255 --sport 53:65535 -d 192.168.0.20 -dport 1024:65535 -m state state ESTABLISHED -j ACCEPT
I am developing a site for a new company that will run under a medical engineering firm. I'm currently the only employee and am setting up websites and graphics for the company, but working out of the same office as everyone else. We currently have a VPS through iPower to host our site on, and everything is dandy. However we only own one IP address on the VPS, and I want to be in charge of my secondary nameserver, as I will also eventually use it as a secondary MX server. I have never done this before so I have a few questions about it. My previous experience has all been graphic design and web design, not much on the hosting side of things.
1.Is it possible to run a server on a XP desktop just using Apache or similar software (and a dynamic DNS service)?
2. Would it be possible to run this through the company LAN and router to make it accessible via the web without any serious tinkering on their network? (it has to stay up, and I have no idea what kind of routers or firewalls they are using currently). Basically given the standard setup how hard is it to open up the ports on the router(s)? I've done this only on a home router before, so I assume it can't be much different.
Will the nameservers work if the nameservers are pointed to a parking page? For example:
I need to change my nameservers to ns1.mywebhost.com and ns2.mywebhost.com
(nameservers are made up)
These nameservers are from my web hosting service provider. When I visit the nameservers, it shows up a parking page from a domain parking service (let's say NameDrive parking page)
Will the nameservers function correctly and will my websites work? I have this question because usually the nameservers that I use, they always point to a CP page or something like that rather than a parking page.
I signed up with cheapvps.co.uk a month ago, and I'm very happy with them . Now I'm looking for a very small VPS to host a secondary DNS server, and maybe a backup MX server.
It's just for personal use.
I think 5GB disk space would be enough, and I would like not to spend more than $10 USD/month. Do you know any VPS that suits my needs?
We need a secondary DNS for our cPanel server, as we want to have separate nameservers. What is the cheapest vps anyone knows that is hosted outside of Bluesquare House (UK). Global location isn't important.
I have a VPS with LXADMIN Hostinabox single server and want to use this VPS as a secondary/slave DNS server. My primary/master DNS is hosted elsewhere.
Does the LXADMIN Hostinanox interface facilitate the ability to setup the secondary zone?
I have searched for setting up automatic secondary DNS, but couldn't find anything, if I missed it, please post a link
I have 2 VPS's one running cPanel/WHM with about 15 low traffic sites on it. The other is a very slow spec VPS, hopefully just for DNS services.
I only have 1 domain server running currently, this is on the same server as the all the websites, what I want is a secondary DNS mirroring that of the DNS on my cPanel VPS, automaitically....
I was thinking of writting a little script to scp all the .db files in /var/named/ to my secondary server, then login to the secondary server and restart BIND?
What happens if your primary nameserver goes down? Meaning that it goes completely off the net, not even denying dns requests but completely ignoring them.
I'd guess that resolvers would query the secondary NS after a specified timeout, but what is that timeout set to? Does it differ from ISP to ISP? How much of a slowdown are we looking at for end users?
would it be possible to have my main box running apache, a second box for dns/other and an offsite secondary dns such as DNS1.PUBLIC-DNS.NET?
Is it possible to authenticate the primary and offsite secondary nameserver so the zone is transferred to the secondary? Would i need to pay for a special service, or do free ones exist? Are there any security implications with zone files being transferred out over the public internet, would a vpn need to be configured or can the process be encrypted via the transfer procedure?
Finally, how would this affect the way the entire virtual hosting works? I know when the nameserver on the host machine serves resolves a name request for a computer trying to browse the site in question, but when the actual http request goes to the web server does it incldue the domain it is looking at also?
I got a new server and need to move my primary and secondary DNS. I use cpanel.
My idea was too:
1. Shut off my secondary DNS ns2. on my old server. (which I don't know how to do.) I was able to delete it from the nameserver Ip's link in whm. It deleted it but the server still has the IP assigned to it.
2. Set up my secondary dns on the new server. (cpanel wont let me because it says it already exists so I'm kind of stuck on this one too.)
3. Once the secondary is set up go to my registar and change the IP address.
4. move the sites, and turn off the primary ns server forcing everything to go to the new server or secondary dns.
I've been having this issue for almost a week now and it's driving me crazy.
I made an IP switch from one peer to another. Anyways, I setup the gateway, primary IP, subnet, etc.
Once the box was rebooted and came up with the new IPs I noted that cPanel was whining that the license was incorrect and noted that instead of xxx.xxx.xxx.98 it was recognizing xxx.xxx.xxx.99
I just switched the license over and it was done. But I'm having some major email issues as some remote hosts does not receive/send emails to my server as the hostname cannot be found since they also recognize the secondary IP .99 and not primary .98 as it should be.
I've checked the entire settings again but just can't get around it. An ipconfig shows that the primary IP is in fact .98 which keeps me puzzled:
Signed up for my 1st VPS recently, after Primary VPS had initial problems setting up my CPanel VPS, they offered me 'free full management ' for 2 months and Free Security Installation. Nice i thought. On the 16th June, experienced around 12 hours of downtime, had not moved my main sites over to them at that time so didn't kick up any fuss.
After moving my main sites over to them, soon after and they all working ok, on Wednesday 20th June night, I requested this free security installation they offered and was told APF and BFD had been installed some time in the night.
Checking sites next morning (thursday 21st - coincidently same time everyone else was having problems) saw no sites were available, was getting 'server not found'. So started 'critical support ticket':
Quote:
Hello,
I went onto the internet this morning to find my websites/IP addresses down and my control panel inaccessible. It has now been 40 minutes and its still the same. God knows how long it may have down before i checked. I tried live support twice and both times i have been cut off/ no response. Please can this problem with my VPS and your live support system be looked at.
This resulted in 20 hours of no sites for me. Same thing in the ticket, I would say, 'My IP addresses and sites are still down' and i would get response back, 'Your VPS is back up and running fine'. Great help that was!
14 hours after my 'critical' support ticket and not getting anywhere, finally speaking to someone in live support, they figured it was the firewall they had installed earlier was blocking access to everything. They excepted no responsibility for the time sites were offline or any loss of earnings saying it was my fault for not configuring the firewall.
Response was:
Quote:
The issue is that you did not request any ports to be open or any applications to be allowed through
I thought ok, maybe it was my fault, i'm new to VPS and didnt know i had to request ports to be open and no-one told/asked me either (but isnt that what managed hosting is for - to make them deal with everything).
Anyway, Regarding why it took them 14 hours to figure out the problem, Victor responded:
Quote:
You were not able to state your exact issue, so all we were able to go on wa guess work. So obviously it will take some time to figure out your issue if you do not tell us what it is exactly.
14 hours to figure it out why my IP's and sites were down because my original ticket was vague!?!
As someone new to VPS's i would think that this is there fault. But Victor clearly makes out that they are not to blame and it is all my fault! Everything is up and working fine now and I was at first surprised with the high levels of service and support but after experience, its its like banging your head against a brick wall chatting with these guys!
The problem is that my hd is failed. Hoster setup new server, also installed the secondary drive but not mounted. So need advice how can i get my data off it?
I got a new dedicated server, and I put the primary domain name to be zeonwebhosting.com.
However, when I setup the nameservers, and go to GoDaddy.com and NameCheap.com to change the nameservers on my domains, I get an "Errors were detected" on GoDaddy.com and a "nRRPResponseCode 531" on NameCheap.
I fixed everything in WHM and got a server administrator to fix some things for me, and it didn't work yet. Now I am thinking that the problem might not be with the server, but with the domain.
ZeonWebHosting.com is registered at GoDaddy.com, and since I was not sure what nameservers I should put as it is the primary domain name, I used the parked nameservers on GoDaddy, and used the Total DNS feature to change the A and MX Records to point to my server's IPs.
I tried putting the ns1.zeonwebhosting.com and ns2.zeonwebhosting.com DNSs on GoDaddy, but still I got the "Errors were detected" error. I tried almost everything possible. I even redid cPanel just to make sure that everything was OK with the cPanel configuration.
Also there is another problem with the server. I can't seem to be able to delete Nameservers from "Networking Setup > Nameserver IPs" in WHM. I get this message when trying to delete one of the nameservers: "Sorry, the nameserver ip 66.79.191.196 cannot be removing since it is still registered with an ICANN register."
The plan from PrimaryVPS is a little bit downgraded. While as they are offering opening and quarterly payment special offer, you can find 256MB/15GB plan at comparable price.
Now, lets see the standard unixbench result. Each VPS took two benchmarking, one in peak hour and one in non-peak hour:
1. PRIMARYVPS is faster in overall result from CPU, IO to OS. While I could not believe that some results from VEGGIEHOST is even slower than a P2-233 BASELINE machine.
2. Though VEGGIEHOST is slower, its performance is VERY STABLE in both peak hour and non-peak hour. This is because VEGGIEHOST is now using a "hard limit" to ensure its "equal share" CPU policy since late March. This was confirmed by their support once I encountered performance drop for half in April.
Next test is using Apache Benchmark (ab) to test the theoretical webpages processing limit and also see the network throughput (from Hong Kong) in peak hour:
VEGGIEHOST
PHP Code:
1. Simple HTML static page - About 300pg/s2. Simple LAMP dynamic page - About 50pg/s3. Complex LAMP dynamic page - About 5pg/s4. Longest total time for #1 - About 800ms5. Longest total time for #3 - About 2000ms6. Throughput from remote - About 64KBPS (+/- 2KBPS)
PRIMARYVPS
PHP Code:
1. Simple HTML static page - About 800pg/s2. Simple LAMP dynamic page - About 130pg/s3. Complex LAMP dynamic page - About 13pg/s4. Longest total time for #1 - About 10ms5. Longest total time for #3 - About 600ms6. Throughput from remote - About 56KBPS (+/- 2KBPS)
The most interesting thing from the Apache bench is that the worst case to process the web pages from VEGGIEHOST is highly fluctuating. This suspected to be due to the limitation of IO partitioning in VPS technology -- An issue affecting performance much in VPS while not yet fully solved.
When check closer for IO performance from unixbench, we have the following results:
PURE DISK ACCESS
PHP Code:
Sun V480/SE3320 RAID5# ./fsbuffer 10 ; ./fsdisk 10 ; ./fstime 1013850 Kbytes/sec write 256 bufsize 2000 max blocks48567 Kbytes/sec read 256 bufsize 2000 max blocks10327 Kbytes/sec copy 256 bufsize 2000 max blocks36000 Kbytes/sec write 4096 bufsize 2000 max blocks419994 Kbytes/sec read 4096 bufsize 2000 max blocks29000 Kbytes/sec write 1024 bufsize 2000 max blocks138274 Kbytes/sec read 1024 bufsize 2000 max blocks25303 Kbytes/sec copy 1024 bufsize 2000 max blocksSun V480/INTERNAL RAID5# ./fsbuffer 10 ; ./fsdisk 10 ; ./fstime 1054000 Kbytes/sec write 256 bufsize 2000 max blocks52872 Kbytes/sec read 256 bufsize 2000 max blocks24670 Kbytes/sec copy 256 bufsize 2000 max blocks411200 Kbytes/sec write 4096 bufsize 2000 max blocks427934 Kbytes/sec read 4096 bufsize 2000 max blocks175800 Kbytes/sec write 1024 bufsize 2000 max blocks154007 Kbytes/sec read 1024 bufsize 2000 max blocks77536 Kbytes/sec copy 1024 bufsize 2000 max blocksVeggie Host# ./fsbuffer 10 ; ./fsdisk 10 ; ./fstime 108850 Kbytes/sec write 256 bufsize 2000 max blocks15018 Kbytes/sec read 256 bufsize 2000 max blocks5387 Kbytes/sec copy 256 bufsize 2000 max blocks54400 Kbytes/sec write 4096 bufsize 2000 max blocks88029 Kbytes/sec read 4096 bufsize 2000 max blocks30400 Kbytes/sec write 1024 bufsize 2000 max blocks49496 Kbytes/sec read 1024 bufsize 2000 max blocks18038 Kbytes/sec copy 1024 bufsize 2000 max blocksPrimary Vps# ./fsbuffer 10 ; ./fsdisk 10 ; ./fstime 1078850 Kbytes/sec write 256 bufsize 2000 max blocks157190 Kbytes/sec read 256 bufsize 2000 max blocks51128 Kbytes/sec copy 256 bufsize 2000 max blocks444000 Kbytes/sec write 4096 bufsize 2000 max blocks1115200 Kbytes/sec read 4096 bufsize 2000 max blocks215200 Kbytes/sec write 1024 bufsize 2000 max blocks505957 Kbytes/sec read 1024 bufsize 2000 max blocks167760 Kbytes/sec copy 1024 bufsize 2000 max blocks
Though RAID5 is slow, I did not realize before that a VPS can outperform a dedicated server!
Till now it seems all the facts from Primary VPS is excellent, while if you want to join, please consider if the following issues would be a limitation to you:
1. VEGGIEHOST is using a subscription based payment, which means you can terminate the plan once no longer needed. On the other hand, PrimaryVPS requires 30 days prior to termination.
2. VEGGIEHOST is far relax in VPS usage while PrimaryVPS restrict tighter. You can burst the CPU at VEGGIEHOST for 7x24 since it applied a hard limit (in this case hard limit is a good thing) while PrimaryVPS gives you a much higher burst CPU limit but the terms is that you cannot burst over 15% (?) CPU time for more than 5 minutes in any case. Also, VEGGIEHOST does not limit whatever purposes for your VPS while PrimaryVPS do not allow something like P2P in your VPS. This can ensure the system (particularly the IO) did not being pulled by some applications, which is good for those who do not run the P2P applications, while may not be suitable if you need to run it.
3. I have used VEGGIEHOST for 2 months and quite certain that the above results are reliable, while only used PrimaryVPS for 1 week, and since it is a new provider I could not tell if the box will be degraded when more participants to join later. I will post updated review few weeks later to see if this issue occurred.