Forum Discussion

zblue_123071's avatar
zblue_123071
Icon for Altocumulus rankAltocumulus
Dec 14, 2013

GTM and BIND sub-domain delegation - BIND/MX Record Question

Hi,

 

This question is really geared more towards my BIND server configuration than the GTM itself, but I'm hoping someone else here has some experience and can help.

 

In short, I am deploying GTM at two data centers. At each data center, we manage our external DNS with a BIND server (BIND 9.3.6-P1 running on RedHat-9.3.6-4.P1.el5). I want to delegate a sub-domain to GTM ("out.domain.com" in this case).

 

My problem is when I first configured the zone file on the BIND servers to delegate the sub-domain out.domain.com to GTM, I found that everything worked as expected, except that MX records would fail to answer (see "Configuration that Breaks MX Records" code section below). After some time, I decided to move the two new lines I added for out.domain.com, after the MX record lines, and then everything started working again (see "Configuration the Works for Everything" code section below).

 

Configuration that Breaks MX Records:

 

$TTL 1h
    @       IN      SOA             domain.com.     hostmaster.domain.com. (
                                    2013120306      ; Serial
                                    8H              ; Refresh
                                    2H              ; Retry
                                    1W              ; Expire
                                    1D )            ; Minimum TTL
                            IN      NS      ns1.domain.com.
                            IN      NS      ns2.domain.com.
    out                     IN      NS      site-a-f5.domain.com.
    out                     IN      NS      site-b-f5.domain.com.
                            IN      MX      0 domain.com.mxlogic.net.
                            IN      MX      1 domain.com.mxlogicmx.net.

    ; -------- END Routers/Remote Access/Name Servers (2-10) --------

    ns1                     IN      A       1.1.1.1 
    ns2                     IN      A       2.2.2.2 
    site-a-f5               IN      A       8.8.8.8
    site-b-f5               IN      A       9.9.9.9

    ; -------- F5 GTM --------

    gtmtest                 IN      CNAME   gtmtest.out.domain.com.

Configuration the Works for Everything:

 

$TTL 1h
    @       IN      SOA             domain.com.     hostmaster.domain.com. (
                                    2013120306      ; Serial
                                    8H              ; Refresh
                                    2H              ; Retry
                                    1W              ; Expire
                                    1D )            ; Minimum TTL
                            IN      NS      ns1.domain.com.
                            IN      NS      ns2.domain.com.
                            IN      MX      0 domain.com.mxlogic.net.
                            IN      MX      1 domain.com.mxlogicmx.net.
    out                     IN      NS      site-a-f5.domain.com.
    out                     IN      NS      site-b-f5.domain.com.

    ; -------- END Routers/Remote Access/Name Servers (2-10) --------

    ns1                     IN      A       1.1.1.1 
    ns2                     IN      A       2.2.2.2 
    site-a-f5               IN      A       8.8.8.8
    site-b-f5               IN      A       9.9.9.9

    ; -------- F5 GTM --------

    gtmtest                 IN      CNAME   gtmtest.out.domain.com.

Has anyone experienced this, or can anyone confirm whether or not I should be concerned? It seems odd that the order of the configuration matters for this, but then again, I'm not a BIND expert.

 

Thanks in advance for any input on the matter, Zac

 

application delivery
availability
BIG-IP DNS
deployment
design
gtm