Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

web servers

0 views
Skip to first unread message

TonyT

unread,
Jan 29, 2004, 5:02:17 PM1/29/04
to
we have a bm server (6.0.3 & 3.7) that is our firewall/dns master...

i want use a new server (6.5) behind the bm firewall for mutliple
public web sites and a private intranet...

we have an existing zone (schooldistrict.k12.sc.us)...

am thinking that i need to do some or all the following:

1. create new zones for each new public domain we have purchased
(schooldistrict.org and schooldistrict.net) and for which our isp has
already created dns records with the public ip's we provided...

2. do nat on our bm server so that the public ip's will translate to
private ip's that i will associate with the domains?

my immediate goal is to do the necessary dns/nat work so that i can
start creating virtual web servers on the new 6.5 box...

my first question is: am i on the right track? have been digging
around the docs and kb but have not found an idiot-friendly tid or
quick-start guide to get me out of the gate...

would greatly appreciate a kick in the right direction...

cheers

Brad Doster

unread,
Jan 29, 2004, 10:40:57 PM1/29/04
to
In article <orvi10pe1mjcc4qi4...@4ax.com>, TonyT wrote:
> 2. do nat on our bm server so that the public ip's will translate to
> private ip's that i will associate with the domains?
>
Actaully the association should be with each web server, not domain. I
suspect that's what you meant, but you didn't state it quite correctly.
If so, then yes, it sounds like you're on the right track.

bd
NSC Volunteer SysOp
www.InsightNetSolutions.net

TonyT

unread,
Jan 30, 2004, 3:18:52 PM1/30/04
to
hi bd - i don't say my own name quite correctly half the time...

i may be doing this in a crazy sequence...

in the dns mgmt console i created new primary zones for each new
domain, and used the server name as the host name. then did "a"
records for each, using a private ip address that is bound to the card
as a secondary ip...

ex:
zone = district.org
domain = <server>.district.org
a record ip = 10.200.70.15

then on the bm server (which is the authoritative and only dns
server), i did nat for each private ip (public ip <---> 10.200.70.15)

so far seems to be working. can ping the private and public ips from
inside, and my web browser from inside will get to the private ip, and
a web browser from outside will get to the public ip... and from the
web server can ping all over....

so i may have blundered the right way on this? cheers


On Fri, 30 Jan 2004 03:40:57 GMT, Brad Doster <b...@NSCSysOps.net>
wrote:

Brad Doster

unread,
Jan 30, 2004, 10:55:48 PM1/30/04
to
In article <tpel10pruqo85jkc4...@4ax.com>, TonyT wrote:
> ex:
> zone = district.org
> domain = <server>.district.org
> a record ip = 10.200.70.15
>
Well again, what I think you mean to say is...

zone = district.org
z record = <server>.district.org with IP address 10.200.70.15

> so i may have blundered the right way on this?
>

Mmmm... I suppose that's one way to put it! :-)

0 new messages