08-13-2008 01:05 AM
One of my client has the following setup.
They have a webserver say abc.com with a public ip say 1.1.1.1 at their HQ.
The client owns the primary dns server for abc.com and is located at HQ and secondary DNS for abc.com is the ISP DNS Server.
Whenever there is change in the DNS entries for abc.com, they modify their DNS server which updates the ISP DNS server which in turn propagates the changes to internet.
This setup is working perfectly fine without any issues.
Now, the client is setting up a DRC (disaster recovery center) located few kms from HQ and connectedd via MPLS. The DRC has its own leased line internet connectivity from the same ISP.
The public ip address of the abc.com server at DRC is say 2.2.2.2
Now the Client has bought a GSS-4492R (rather sold by our PSE & Cisco SE). As per design from CISCO SE, its to be installed at HQ and it will redirect the traffic for abc.com to 2.2.2.2 incase 1.1.1.1 at HQ becomes unavailable due to any reason (provided only 1.1.1.1 server is down and other network infrastructure is running)
I am wondering how GSS will perform the above functionality without disturbing the existing DNS setup. The client doesnt want to disturb their DNS Setup.
Please advise me about the role this GSS can play & add value in the above scenario.
08-13-2008 01:42 AM
GSS is designed to be integrated into an existing traditional BIND-based DNS system.
They will have to delegate the fully qualified domain name (e.g. http://www.abc.com) to the GSS and make these GSSs authoritative for these domains.
For example on their bind server they need
abc.com. IN NS ns1.abc.com.
http://www.abc.com. IN NS gss1.abc.com. <-- NS record for http://www.abc.com via GSS1
http://www.abc.com. IN NS gss2.abc.com. <-- NS record for http://www.abc.com via GSS2
;
ns1.abc.com. IN A x.x.x.x
gss1.cisco.com. IN A a.b.c.d <-- A record for GSS1
gss2.cisco.com. IN A p.q.r.s <-- A record for GSS2
Following link will give you an idea of the DNS flow with GSS in place.
GSS can also be used as a full fledge DNS (with CNR Licences).If you have CNR enabled on GSS then optionally the existing DNS servers can also be replaced by GSSs.
HTH
Syed Iftekhar Ahmed
08-13-2008 02:18 AM
Thanks for explanation. It makes things pretty clear for me.
As per my uderstanding, the GSS practically adds no value in the existing client scenario.
The only role it can play is that of an authoritative DNS server for www.abc.com and for this the client has to replace their existing DNS server with GSS.
Please correct me if my understanding is incorrect.
Thank,
Abu Bucker
08-13-2008 08:03 AM
Hi,
To accomplish what you want then yes, you do have to make the GSS authoritative for www.abc.com but this is the only action needed - you don't need to replace your existing DNS server.
HTH
Andrew.
08-13-2008 08:15 AM
GSS definitely adds value. Unlike Simple DNS services it constantly probe the Servers/Local Load balancers and direct the client to most healthy and least loaded resource.
Simple DNS server has no way to find out if the resource is alive/healthy/loaded.
If they make GSS authoritative for www.abc.com then they are not replacing their DNS Server. They are simply delegating one DNS record to the GSS.
Client's DNS Servers will still contact their primay dns server first and then the primary DNS server will ask Client's DNS server to contact GSS for that particular record (www.abc.com).All the other DNS records that are not delegated to GSS will still be served by their DNS Server.
Syed Iftekhar Ahmed
08-20-2008 07:24 AM
I am not clear above msg...
I am loking same to configure in DNS server for GSS stuff..
abc.com
xyz.abc.com
For both of this i need DNS config in bind..
pls help me out..
Regards,
sateesh
08-20-2008 09:39 AM
If you are not using GSS as primary DNS server for abc.com and just want to delegate xyz.abc.com then
On your primary DNS server (authoritative for abc.com) delegate the fully qualified domain name xyz.abc.com to the GSS and make these GSSs authoritative for this domain.
Following changes will be needed on the primary dns server
xyz.abc.com. IN NS gss1.abc.com. <-- NS record for xyz.abc.com via GSS
gss1.abc.com. IN A a.b.c.d <-- A record for GSS
Syed
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide