nanog mailing list archives
RE: Gothcas of changing the IP Address of an Authoritative DNS Server
From: Gregory Hicks <ghicks () cadence com>
Date: Wed, 14 Dec 2005 11:21:34 -0800 (PST)
From: "Ejay Hire" <ejay.hire () isdn net> To: "'Eric Kagan'" <ekagan () axsne com>, <nanog () merit edu> Subject: RE: Gothcas of changing the IP Address of an Authoritative DNS Server Date: Wed, 14 Dec 2005 13:15:42 -0600 assuming you've got the old box and the new one running concurrently, you could run tcpdump on the old box with a filter to only catch dns requests to the old ip. Let it run for 24-48 hours and you could see who/what was still querying the old ip.
This topic comes up frequently on bind-users () isc org ... Might query there but many of these responses have covered much of what is discussed there. Regards, Gregory Hicks
-e-----Original Message----- From: owner-nanog () merit edu [mailto:owner-nanog () merit edu]OnBehalf Of Eric Kagan Sent: Tuesday, December 13, 2005 2:45 PM To: nanog () merit edu Subject: Gothcas of changing the IP Address of an Authoritative DNS Server We need to move our Primary DNS server from legacy IPspaceprovided by our upstreams to our ARIN Assigned IP space.Iam looking for advice and any gotchas. I couldn't findanywhite papers to this affect or archived articles orpostings.If someone does have a resource for this or find thiscouldbe valuable, I can certainly gather all the info anddocumentit. Most of the Registrars I have seen now use the Authoritative DNS Server Host names for the domain name registrations vs the IP Address. For most of ourcustomers,we register and host the DNS. I have confirmed almost allthe customers have either Network Solutions, Tucows, GoDaddyand Register.com. Can I simply change the IP address of our DNS server and update the DNS Host Record with our registrar with the newIPand any A / NS records we have ? As long as othercustomersdomains have our DNS Server FQDN as the Host, they shouldnotneed to make any changes, correct ? I would love tothinkits that simple, but there is always a gotcha. Doesanyoneknow of any main registries using just the IP Addresswherethe customer might need to go in and make those changesforeach and every domain ? Any input, advice or ideas isappreciated.Thanks Eric
------------------------------------------------------------------- Gregory Hicks | Principal Systems Engineer Cadence Design Systems | Direct: 408.576.3609 555 River Oaks Pkwy M/S 6B1 | Fax: 408.894.3400 San Jose, CA 95134 | Internet: ghicks () cadence com I am perfectly capable of learning from my mistakes. I will surely learn a great deal today. "A democracy is a sheep and two wolves deciding on what to have for lunch. Freedom is a well armed sheep contesting the results of the decision." - Benjamin Franklin "The best we can hope for concerning the people at large is that they be properly armed." --Alexander Hamilton
Current thread:
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server, (continued)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server Steven M. Bellovin (Dec 13)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server Joe Abley (Dec 14)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server Joe Maimon (Dec 14)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server Joe Abley (Dec 14)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server David W. Hankins (Dec 14)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server Steven M. Bellovin (Dec 13)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server Jason Lixfeld (Dec 14)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server bmanning (Dec 14)
- Re: Gothcas of changing the IP Address of an Authoritative DNS Server Joe Abley (Dec 14)