Forum Discussion

kridsana_52318's avatar
kridsana_52318
Icon for Nimbostratus rankNimbostratus
Apr 08, 2015

F5 GTM didn't forward zone

Hi

 

I using GTM as DNS server and currently have zone "domain.com" on GTM

 

Now we got subdomain "aws.domain.com" which run on cloud in AWS. (not GTM)

 

Point is we have to use GTM for for user to request name.

 

So I create another zone, it's zone aws.domain.com and zone type forward on GTM.

 

Problem is when user request "www.aws.domain.com" >> He sent query to F5 and F5 answer no such name.

 

Yeah, "domain.com" zone is answer that. This is a problem. Why domain.com zone answer that query?

 

It should go in zone "aws.domain.com" and F5 forward to DNS server on cloud in AWS.

 

So I try to create primary zone "aws.domain.com" with name server of AWS.

 

query can go to this zone but F5 still didn't forward to DNS nameserver of AWS.

 

How can I fix this problem?

 

I have to create something on F5 for when user want to query "www.aws.domain.com", it's can forward query to AWS to get the correct answer.

 

ps. Server in AWS is change IP everytime it's reboot so we can't just create subdomain zone and A record on F5

 

ps2. I using F5 BIG-IP 1500 gtm v. 10.2.4

 

12 Replies

    • kridsana's avatar
      kridsana
      Icon for Cirrocumulus rankCirrocumulus
      we got no record for that , we just need to forward query to AWS Nameserver because Server in AWS always change IP so we can't create A record on zone "aws.domain.com" on our GTM
    • kridsana's avatar
      kridsana
      Icon for Cirrocumulus rankCirrocumulus
      we got no record for that , we just need to forward query to AWS Nameserver because Server in AWS always change IP so we can't create A record on zone "aws.domain.com" on our GTM
  • Hi Teepan,

     

    You need to create the sub-domain, the cname and the ns record .... and this will do the job.

     

    Regards,

     

    • kridsana's avatar
      kridsana
      Icon for Cirrocumulus rankCirrocumulus
      I get it but what cname is I have to create ? I have subdomain primary zone created "subdomain.domain.com" and Nameserver "ns-883.awsdns-46.net" when I will create A record for this NS , It will be "ns-883.awsdns-46.net.subdomain.domain.com" A 205.251.195.115 Is this correct? Why it append so long?
  • Hi Teepan,

     

    You need to create the sub-domain, the cname and the ns record .... and this will do the job.

     

    Regards,

     

    • kridsana's avatar
      kridsana
      Icon for Cirrocumulus rankCirrocumulus
      I get it but what cname is I have to create ? I have subdomain primary zone created "subdomain.domain.com" and Nameserver "ns-883.awsdns-46.net" when I will create A record for this NS , It will be "ns-883.awsdns-46.net.subdomain.domain.com" A 205.251.195.115 Is this correct? Why it append so long?
  • After Trial and error

     

    If we want GTM to Forward zone we need to edit option in named configuration with recursive yes; and allow-recursive {any;};

     

    So user who send request to GTM will recursive to AWS correctly.

     

    But this seem not practical because we have to recursive all user.

     

    Is this method (allow-recursive any) create flaw in security ? or have any flaw or disadvantage ?

     

    Can I allow-recursive option in zone file (not named configuration) to limit {recursive any}; to use only in this Forward zone ?

     

    Thank you