[quote user="ArcaneMagus"]Are you trying to setup the Zimbra server to be it's own DNS server, with recursive queries going out to the 10.100.177.205 one? Or are you trying to setup the Zimbra server to use the 10.100.177.205 server as it's only DNS server and have that server work for all internal queries?
[/quote]
I have split Zimbra into different servers as I only have low end desktops:
3 Dell GX240's
-each
--1.6G CPU
--1.2G RAM
--Fedora11
-1 with ldap and BIND9 as DNS master (bcldap)
-1 with store, logger, snmp, apache and BIND9 DNS slave (bcmailbox)
-1 with mta (bcmta)
[quote]
Also just as a note:
In your record file you are missing the "." at the end of the primary DNS server part of the SOA, that is why it is returning "bcldap.hcjbc.org.hcjbc.org." rather then "bcldap.hcjbc.org.".
[/quote]
ok done
[quote]
Also you currently have your MX records setup for the servers FQDN. This is fine if your email addresses will be in the form of
user@bcmailbox.hcjbc.org, however it is a problem if you are trying to do addresses like
user@hcjbc.org. If you want addresses like that you need to set the MX record on just hcjbc.org, not bcmailbox.hcjbc.org. So the lines would look like this (if you are going with the internal dns server not split dns):
hcjbc.org. 380000 IN MX 10 10.100.177.200
hcjbc.org. 380000 IN MX 1 10.100.177.210
With how it is currently setup you have 1 MX record for addresses like
user@bcmta.hcjbc.org. that has a priority of 1 (out of the 1 record), and then you have another record for addresses like
user@bcmailbox.hcjbc.org. that has a priority of 10 (out of the 1 record). Addresses like
user@hcjbc.org have no MX record associated with them right now.
[/quote]
Done
[quote]
Also your PTR records that you have in there are useless and will never be used unless you manually query for them. The proper way to do PTR records would be to create another zone file for the 177.100.10.in-addr.arpa zone. It should look something like the following:
$TTL 2D
@ IN SOA bcldap.hcjbc.org. hcjbc.yahoo.com. (
2009091300 ; serial
3H ; refresh
1H ; retry
1W ; expiry
1D ) ; minimum
IN NS bcldap.hcjbc.org.
200 IN PTR bcmailbox.hcjbc.org.
205 IN PTR bcldap.hcjbc.org.
210 IN PTR bcmta.hcjbc.org.
[/quote]
You lost me on this section. I do not remember setting up PTR records.
[quote]
You also have your firewall (10.100.177.5) in there as an authoritative NS for your domain... is that meant to be there?[/QUOTE]
For some reason, if I do not have this as one of the ns, I will not have external access from the machines. I use IPCop as my router/firewall/proxy/urlfilter/dhcp/ntp server. I disabled the DHCP, and now I can access the internet. I will be changing bcldap to bcdc as it will have to be the DHCP and DNS and NTP server now. And making a new bcldap.
I can now get dig to respond for my mx records.
[martinezjr@bcldap ~]$ host -v hcjbc.org
Trying "hcjbc.org"
;; ->>HEADER<
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;hcjbc.org. IN A
;; AUTHORITY SECTION:
hcjbc.org. 38400 IN SOA bcldap.hcjbc.org. hcjbc.yahoo.com. 1264874199 10800 3600 604800 38400
Received 85 bytes from 10.100.177.205#53 in 8 ms
Trying "hcjbc.org"
;; ->>HEADER<
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;hcjbc.org. IN AAAA
;; AUTHORITY SECTION:
hcjbc.org. 38400 IN SOA bcldap.hcjbc.org. hcjbc.yahoo.com. 1264874199 10800 3600 604800 38400
Received 85 bytes from 10.100.177.205#53 in 1 ms
Trying "hcjbc.org"
;; ->>HEADER<
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
;; QUESTION SECTION:
;hcjbc.org. IN MX
;; ANSWER SECTION:
hcjbc.org. 380000 IN MX 10 10.100.177.200.hcjbc.org.
;; AUTHORITY SECTION:
hcjbc.org. 38400 IN NS 10.100.177.205.
hcjbc.org. 38400 IN NS 10.100.177.200.
Received 114 bytes from 10.100.177.205#53 in 1 ms
[martinezjr@bcldap ~]$ dig mx hcjbc.org
; <<>> DiG 9.6.1-P3-RedHat-9.6.1-9.P3.fc11 <<>> mx hcjbc.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
;; QUESTION SECTION:
;hcjbc.org. IN MX
;; ANSWER SECTION:
hcjbc.org. 380000 IN MX 10 10.100.177.200.hcjbc.org.
;; AUTHORITY SECTION:
hcjbc.org. 38400 IN NS 10.100.177.200.
hcjbc.org. 38400 IN NS 10.100.177.205.
;; Query time: 2 msec
;; SERVER: 10.100.177.205#53(10.100.177.205)
;; WHEN: Fri Feb 5 18:23:08 2010
;; MSG SIZE rcvd: 114
[martinezjr@bcldap ~]$