Create a New Master Zone

Next: Creating a New Slave Up: THE GUARDIAN DIGITAL WEBTOOL Previous: DNS Management Contents Index

Create a New Master Zone

The domain namespace is divided into regions called zones. For the purposes of this document, it is sufficient to describe a zone as a domain, or section thereof, for which the server will be responsible. The host www.guardiandigital.com is a member of the domain guardiandigital.com, as is mail.guardiand
igital.com and dns.guardiandigital.com.

For example, Figure 4.4.6a shows the guardiandigital.com zone and two hosts within the zone.

**Figure:** 4.4.6a - Example of the guardiandigital.com zone.
$\resizebox*{4.4in}{!}{\includegraphics{images/ZoneDia.eps}}$

When you select the option to create a new zone you will be presented with the page in Figure 4.4.6b.

**Figure:** 4.4.6b - New Master Zone Options
$\resizebox*{4.4in}{!}{\includegraphics{images/NewMasterZone.eps}}$

The above page has quite a few options. Here we will discuss each one in detail.

Zone type: The zone type will allow you to choose between forward and reverse lookup.

Forward lookup allows the client machine to supply a Fully-Qualified Domain Name (FQDN) and the DNS will return the IP address.
Reverse does the exact opposite. You supply an IP address and the DNS will return an FQDN.

[NOTE:]When creating entries for a Reverse Master Zone you must not put in entries that refer to an alias. To do so would break DNS for the corresponding domain.

Domain name / Network: This contains the actual domain name, or, in the case of reverse zones, the network address block, that this DNS zone will reside in. For example, if your EnGarde system is like above,
lockbox.guardiandigital.com, then the domain would be
guardiandigital.com.
Master Server: This section will contain the IP address of your master DNS server. The master DNS server, also known as a Primary DNS Server, maintains a list of domain names and their IP addresses. This list is made available to other DNS servers on the Internet so that users can access these sites over the network. For example, if you own guardiandigital.com your master server will control guardiandigital.com. You can have other DNS servers, known as secondary DNS servers, or slave DNS servers, that act as a backup to the primary DNS server for guardiandigital.com. If your EnGarde system is your master DNS server then enter in the address of your EnGarde system.
Email Address: The default e-mail address associated with this zone. Generally this is the e-mail address of the system administrator or whomever is responsible for DNS on your network.
Allow Transfers From...: DNS will need to transfer information if you have slave DNS servers on your network. This should contain a list of IP addresses and/or a block of IP addresses for other DNS servers that are allowed to transfer DNS information between each other. You can set the default in the Default Zone Settings section for this specific zone, which is described later in this section.
Allow Queries From...: Here you can list the IP addresses and/or block of IP addresses for machines that are allowed to query your DNS server. You may want to limit this to the people inside your network if your EnGarde system is located on your internal or private network. We recommend leaving the default set if you are uncertain. You can set the default in the Default Zone Settings section, which is described later in this section.

Next: Creating a New Slave Up: THE GUARDIAN DIGITAL WEBTOOL Previous: DNS Management Contents Index

docs@guardiandigital.com 2002-12-16