Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology

answers

GTM/DNS - How to delegate just the main domain to GTM

Updated 3/3/2010 • Originally posted on 03-Mar-2010 by mniemiec 0

Here is the issue I have with DNS/GTM. We have our own DNS servers that run the main domain i.e. test.com. Specific subdomains are delegated to the GTM's such as marek.test.com. This works great.

However now we want to put the main site on the GTM's, test.com while keeping all the other subdomains like corp.test.com on our main DNS servers.

Does anyone know how you can delegate just the main domain to the GTM's? So any queries coming to our DNS servcers for test.com will get forwarded to the GTM's, while others like corp.test.com will get answered by our DNS servers. The DNS folks at my company are stating this cannot be done due to the SOA present on test.com.

Any help would be greatly appreciated. Thank you.

Marek
0
Rate this Question

Answers to this Question

15 Answers:

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 03-Mar-2010 • Originally posted on 03-Mar-2010 by The Bhattman 816
Hi Marek,
Did you look into Zonerunner on the GTM?

You can find information about ZoneRunner here

https://support.f5.com/kb/en-us/products/big-ip_gtm/manuals/product/bigipgtm9_2_2/BIG-IP_9_2_2GTM_Guide-17-1.html#wp999886


I hope this helps
#Bhattman
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 03-Mar-2010 • Originally posted on 03-Mar-2010 by mniemiec 0
I think this is just for syncing the zones. We do not want the GTM to be the authorative server for the entire test.com zone. Just for test.com. I think the Zonerunner just helps in syncing the zone files.

When our DNS servers receives a request for test.com we want it to forward it to the GTM's. If our DNS servers receive a request for corp.test.com we want the DNS to resolve locally.
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 04-Mar-2010 • Originally posted on 04-Mar-2010 by The Bhattman 816
Yes I now understand. Unfortunately, I think you just hit the DNS laws of physics. Unfortunately the record w/o the "www' is the root record and I don't think you can have the GTM host the root record and the other DNS server be authoritative for the same domain.

My 2 cents

#Bhattman










0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 04-Mar-2010 • Originally posted on 04-Mar-2010 by jelmore 0
While there might be a way to do what you want why not just use CNAME's for the stuff on your F5 and leave your DNS server authortative for everything else?
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 04-Mar-2010 • Originally posted on 04-Mar-2010 by mniemiec 0
I asked the same thing, Our DNS folks stated you cannot use the CNAME on a root record that has an SOA. Do you know if this is true?
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 05-Mar-2010 • Originally posted on 05-Mar-2010 by The Bhattman 816
Yes that is very true. Any reason why you can't make test.com the authoritative on the GTM?

#Bhattman

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 11-Mar-2010 • Originally posted on 11-Mar-2010 by John Arnold 0
You can configure the GTM with wideip for test.com, then configure a pool on the listener vip to loadbalance to the downstream DNS servers for all subdomains. This is very similiar to how BIND runs on the box, except using external DNS server...

-John
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 12-Mar-2010 • Originally posted on 12-Mar-2010 by Jason Rahm
You could also setup the GTM in front of your authoritative name servers (architecturally, bridged or routed) and intercept the test.com queries, and any other queries for that matter, and pass all other traffic the gtm is not interested in back to them. It works well, though I'd recommend staying away from the bridging side of that solution.
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 25-Mar-2011 • Originally posted on 25-Mar-2011 by Alan Evans 3
I am exceptionally late to the party but I am looking for help on something else and came across your post.

We do this a lot.  For policy reasons we could not have our GTMs participate in DNS for our highest level domains.  However we have delegated a sub domain to the GTMs just fine and CNAME specific entries.

example.com is served by our external DNS servers
lb.example.com is served by our GTMs and sub domain is delegated in example.com to a self IP on our GTMs

On the GTMs we setup the basics for the lb.example.com subdomain, SOA, NS etc and then add pools, wideips and so on.

Then we configure a wideip for www.lb.example.com and make www.example.com a CNAME for www.lb.example.com.

Voila, the GTMs are not directly involved in serving example.com.

Regards,
-Alan
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 29-Mar-2011 • Originally posted on 29-Mar-2011 by Mike Sullivan 29
I’d like to piggy back on Alan’s post.

What I do is just delegate the wide ip from the primary zone to the GTM. Thus for the www wide ip, the primary zone has NS records pointing to the GMTs:

www ns1.mygtm.com.
www ns2.mygtm.com.

This eliminates the need for cname records.

Mike
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 12-Sep-2011 • Originally posted on 12-Sep-2011 by Spidey 436
Hi Guys,

Does enabling allow-transfer on DNS servers and creating a master zone file means GTM will be the primary DNS right away?
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 20-Jan-2015 • Originally posted on 20-Jan-2015 by IRONMAN 169

I am New To GTM,So my question is simple

for example , i have dove.com, which was published over internet, but i want to resolve the DNS requeste on my local GTM, but if user from home request dove.com, it will go to (INNI DNS servers). how come my GTM Box can select best server and provide the IP to user?

my guess, i have record on INNI DNS server, stating, get DNS request from my GTM BOX?

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 20-Jan-2015 • Originally posted on 20-Jan-2015 by Or Yaacov

GSLB for top level domains can not be done through delegation (cname is not an option) You have to be in line. YOu need to create a delegated subdomain from your ISP to the GTM , meaning the CNAME will point to a NS which is the GTM that is the NS for that domain e.g.

Alternatively without delegation you need to be the Authoritative of the entire domain. you can host the Zone file on the GTM , make it the Auth server and add the DTM Wide-IP as the records you wish to provide to GSLB

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 20-Jan-2015 • Originally posted on 20-Jan-2015 by IRONMAN 169

Thanks Yaacov, I Understood, CNAME will Point out my GTM as DNS Server or NS for user try to access from public internet, CNAME point out the FQDN name, I have Multiple GTM across global, with same FQDN, what will happen in real scenario,

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Updated 28-Jan-2015 • Originally posted on 28-Jan-2015 by Or Yaacov

All your GTMs should sync in order to provide the same domain. Each GTM might respond differently to the A / AAAA query that was delegated to him from a CNAME. Each GTM will have a wide-ip that holds the A record and behind it a pool of addresses based on your policy to resolve to.

Please see also : https://support.f5.com/kb/en-us/products/big-ip_gtm/manuals/product/gtm-implementations-11-6-0/4.html?sr=43504147

https://support.f5.com/kb/en-us/solutions/public/0000/200/sol277.html?sr=43504147

0
;