Migrating from Cpanel DNS?

Discussion in 'Installation/Configuration' started by WebRuss, Feb 9, 2007.

  1. WebRuss

    WebRuss New Member

    Hello

    I have 2 DNS servers:
    alpha.xvihost.net <-- Cpanel box is PRIMARY dns
    beta.xvihost.net <-- ISPConfig box want it to be SECONDARY dns

    Beta box is recently setup by following "The perfect setup centos 4.4 and ISPConfig" here on howto forge. I want to do the same with alpha and make it an ISPConfig box too. However I need to get all the DNS records off alpha onto beta so I can take down alpha and rebuild it.

    My Question:
    1. How do I get the two boxes talking to each other so that beta has all the same DNS records as alpha so I can take alpha off-line and rebuild it?

    Regards
    Russ
     
  2. till

    till Super Moderator

    If the alpha box is based on bind and bind is configured to allow zone transfers, then set beta as secondary nemeserver for the domains on alpha. Now add for every domain a secondary DNS record in ISPConfig on beta, bind will then transfer the domain details from alpha to beta automatically when everythin is configured correctly and zone transfers are allowed to beta.
     
  3. WebRuss

    WebRuss New Member


    If the alpha box is based on bind >>
    Yes I do believe that cpanel uses bind.

    Then set beta as secondary nameserver for the domains on alpha>>
    Okay I did that and added an A record on alpha

    Now add for every domain a secondary DNS record in ISPConfig on beta>>
    Done
     
    Last edited: Feb 9, 2007
  4. WebRuss

    WebRuss New Member

    Till said:
    bind will then transfer the domain details from alpha to beta automatically when everythin is configured correctly and zone transfers are allowed to beta.


    How do I knw this is working?

    Russ
     
  5. till

    till Super Moderator

    Check your secondary server with the following command executed locally on the beta server.

    dig @localhost yourdomain.com
     
  6. WebRuss

    WebRuss New Member


    okay I used putty to connect and I ran the command. Here is what I got:
    # dig @localhost stmat.org
    <<>> DiG 9.2.4 <<>> @localhost stmat.org
    (1 server found)
    global options: printcmd
    Got Answer:
    ->>HEADER<<- opcode:QUERY, status:SERVFAIL, id:44699
    flags qr rd ra; QUERY 1, ANSWER 0. AUTHORITY: 0, ADDITIONAL 0

    QUESTION SECTION:
    stmat.org IN A



    Okay what does that mean? Did it work?

    Russ
     
  7. martinfst

    martinfst HowtoForge Supporter

    It means that bind is not running on localhost, which is your secondary / beta host.

    I'm not familiar with CentOS, so can't tell you exactly where the log file is, but usually you'll find and error for bind/named in /var/log/messages.
     
  8. WebRuss

    WebRuss New Member


    Okay I checked and bind is running for sure. I even restarted it just to be double sure. However when I opened up /var/log/messages I saw something interesting:

    alpha DNS server the CPanel box is 207.150.182.162
    It looks like beta DNS server is attempting to grab the DNS records but is getting permission denied.


    Feb 9 10:33:38 beta named[23939]: transfer of 'soundkave.com/IN' from 207.150.182.162#53: end of transfer
    Feb 9 10:33:38 beta named[23939]: dumping master file: tmp-XXXXtLvsOg: open: permission denied
    Feb 9 10:33:38 beta named[23939]: transfer of 'ymtoolbox.com/IN' from 207.150.182.162#53: failed while receiving responses: permission denied
    Feb 9 10:33:38 beta named[23939]: transfer of 'ymtoolbox.com/IN' from 207.150.182.162#53: end of transfer
    Feb 9 10:33:38 beta named[23939]: dumping master file: tmp-XXXXrrk9Ek: open: permission denied
    Feb 9 10:33:38 beta named[23939]: transfer of 'barkett.xvihost.org/IN' from 207.150.182.162#53: failed while receiving responses: permission denied
    Feb 9 10:33:38 beta named[23939]: transfer of 'barkett.xvihost.org/IN' from 207.150.182.162#53: end of transfer
    Feb 9 10:33:38 beta named[23939]: dumping master file: tmp-XXXXNzPPxo: open: permission denied
    Feb 9 10:33:38 beta named[23939]: transfer of 'cpweb.org/IN' from 207.150.182.162#53: failed while receiving responses: permission denied
    Feb 9 10:33:38 beta named[23939]: transfer of 'cpweb.org/IN' from 207.150.182.162#53: end of transfer
    Feb 9 10:33:38 beta named[23939]: dumping master file: tmp-XXXXiOcNss: open: permission denied
    Feb 9 10:33:38 beta named[23939]: transfer of 'ourfrienddavidrowe.com/IN' from 207.150.182.162#53: failed while receiving responses: permission denied
     
  9. WebRuss

    WebRuss New Member

    ALL FIXED!!.. I think...

    Okay so it was a permission problem.

    dumping master file: tmp-XXXXrrk9Ek: open: permission denied

    I must have made a mistake in the setup when I set the permissions for the chrooted dns so I went back and redid the permissions:
    chmod 755 /var/named/
    chmod 775 /var/named/chroot/
    chmod 775 /var/named/chroot/var/
    chmod 775 /var/named/chroot/var/named/
    chmod 775 /var/named/chroot/var/run/
    chmod 777 /var/named/chroot/var/run/named/


    I then restarted named and saw this in /var/log/messages:

    Feb 9 21:50:59 beta named[4286]: starting BIND 9.2.4 -u named -t /var/named/chroot
    Feb 9 21:50:59 beta named[4286]: using 1 CPU
    Feb 9 21:50:59 beta named[4286]: loading configuration from '/etc/named.conf'
    Feb 9 21:50:59 beta named[4286]: listening on IPv4 interface lo, 127.0.0.1#53
    Feb 9 21:50:59 beta named[4286]: listening on IPv4 interface eth0, 207.150.182.163#53
    Feb 9 21:50:59 beta named[4286]: command channel listening on 127.0.0.1#953
    Feb 9 21:50:59 beta named[4286]: command channel listening on ::1#953
    Feb 9 21:50:59 beta named[4286]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700
    Feb 9 21:50:59 beta named[4286]: zone 182.150.207.in-addr.arpa/IN: loaded serial 2007020502
    Feb 9 21:50:59 beta named[4286]: zone limowebwiz.com/IN: loaded serial 2007020502
    Feb 9 21:50:59 beta named: named startup succeeded
    Feb 9 21:50:59 beta named[4286]: running
    Feb 9 21:50:59 beta named[4286]: zone limowebwiz.com/IN: sending notifies (serial 2007020502)
    Feb 9 21:50:59 beta named[4286]: zone 182.150.207.in-addr.arpa/IN: sending notifies (serial 2007020502)
    Feb 9 21:50:59 beta named[4286]: zone drjosepinto.com/IN: transferred serial 2006120701
    Feb 9 21:50:59 beta named[4286]: transfer of 'drjosepinto.com/IN' from 207.150.182.162#53: end of transfer
    Feb 9 21:50:59 beta named[4286]: zone drjosepinto.com/IN: sending notifies (serial 2006120701)
    Feb 9 21:51:00 beta named[4286]: lame server resolving 'beta.xvihost.net' (in 'xvihost.net'?): 207.150.182.163#53
    Feb 9 21:51:00 beta named[4286]: zone agdgammabeta.com/IN: transferred serial 2006040301
    Feb 9 21:51:00 beta named[4286]: transfer of 'agdgammabeta.com/IN' from 207.150.182.162#53: end of transfer
    Feb 9 21:51:00 beta named[4286]: zone agdgammabeta.com/IN: sending notifies (serial 2006040301)
    Feb 9 21:51:00 beta named[4286]: zone connectingpoints.com/IN: transferred serial 2006072901
    Feb 9 21:51:00 beta named[4286]: transfer of 'connectingpoints.com/IN' from 207.150.182.162#53: end of transfer
    Feb 9 21:51:00 beta named[4286]: zone connectingpoints.com/IN: sending notifies (serial 2006072901)


    Now it works like a charm!

    I did :
    #dig @localhost stmat.org

    ; <<>> DiG 9.2.4 <<>> @localhost stmat.org
    ; (1 server found)
    ;; global options: printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16527
    ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2

    ;; QUESTION SECTION:
    ;stmat.org. IN A

    ;; ANSWER SECTION:
    stmat.org. 14400 IN A 207.150.182.165

    ;; AUTHORITY SECTION:
    stmat.org. 14400 IN NS alpha.xvihost.net.
    stmat.org. 14400 IN NS beta.xvihost.net.

    ;; ADDITIONAL SECTION:
    beta.xvihost.net. 172334 IN A 207.150.182.163
    alpha.xvihost.net. 13936 IN A 207.150.182.162

    ;; Query time: 1 msec
    ;; SERVER: 127.0.0.1#53(127.0.0.1)
    ;; WHEN: Fri Feb 9 21:58:46 2007
    ;; MSG SIZE rcvd: 125



    So it is working right I think. Hopefully this will help someone else.

    Regards
    Russ
     

Share This Page