Network Registrar

Network Registrar Help

Zone Administration

A zone administrator is responsible for one or more DNS zones. This administrator needs to perform all DNS zone creation and management functions possible with Network Registrar. To perform this role, the zone administrator must know the details of the zone, including its Start of Authority (SOA) and Name Server (NS) records, and all other DNS resource records for the zone. Note that a zone administrator has permission to work only on zones that the global administrator specifies.

You can view zones, both forward and reverse, in two ways:

Alphabetical list (flat listing for forward and reverse zones)
Zone tree (indented)

As a zone administrator, you can:

Define a single zone distribution map of primary and secondary (master and slave) DNS servers for multiple zones -- This automates the process of updating the individual DNS servers when adding a zone. Any zone added would create a primary zone, add its resource records to the primary DNS server, and create secondary zones on the secondary DNS servers.
Manage templates for zone configuration -- It is likely that the Start of Authority (SOA) data (nameserver, responsible person, and TTL values) and Name Server (NS) record list will be consistent across all zones managed by a single organization. By providing the ability to define zone templates with common configuration data, the zone administrator needs only to adjust any exceptions for the zone itself.
Provide validation of the resource record values in a zone.
Automatically update the appropriate reverse (in-addr.arpa) zones with Pointer (PTR) records for all of the Address (A) records in the forward zone.

Zone Administrator Tasks

Manage zones
Manage resource records
Manage reverse zones
Manage secondary zones
Manage zone templates
Manage zone distributions
Manage the DNS server

Listing and Adding Zones

List/Add Zones Page
(Regional) List Forward Zones Page
(Regional) List Reverse Zones Page
(Read-only Local: List Zones Page)

If you have read-write privileges as a zone-admin, you can list, create, choose for editing, and delete zones on this page. If you have read-only privileges, you can only list the zones for viewing. Zones are listed in the order they are created.

To add a zone, enter its name and optionally choose an owner or template from the drop-down lists (described in the following table), then click Add Zone. This opens the Add Zone page if you do not choose a zone template. If you choose a template, the zone is added to the list and you need not set any further zone properties.
To edit a zone, click the zone name in the list. This opens the Edit Zone page.
To delete a zone, click the Delete icon () next to the name in the list. This opens a Confirm Delete page.
To list or add static resource records for the zone, click the View icon () in the Configuration RRs column. This opens a List/Add Static Resource Records for Zone page.
To list active server resource records for the zone, click the View icon () in the Active Server RRs column. This opens a List/Add DNS Server Resource Records for Zone page.
You can also view the created zones as a tree.

Field/Choice	Description
Name	Name of the zone. Required. Must be unique and fully qualified; for example, the boston.example.com. zone.
Owner	Choose from the drop-down list of existing zone owners, as created by clicking Administration on the Primary Navigation bar, then Owners on the Secondary Navigation bar. Optional. No choices if constrained.
Template	Choose from the drop-down list of existing zone templates, as created by clicking Zone Templates on the Secondary Navigation bar. Applying a zone template means that you do not need to enter any more properties for the zone -- the Start of Authority (SOA) and Name Server (NS) records are already defined by the template. Optional. No choices if constrained.

After entering these values or making these choices, click Add Zone, or click Cancel to cancel the add operation.

If you applied a template, you return to the List/Add Zones page.
If you did not apply a template, the Add Zone page appears.

Field/Choice	Description
Distribution	Choose the zone distribution this zone should be in from the drop-down list.
Owner	Choose another owner name, if needed, from the drop-down list, as created by clicking Administration on the Primary Navigation bar, then Owners on the Secondary Navigation bar. Optional. No choices if constrained.
Zone Default TTL	Default time-to-live for the zone data, which defaults to 24h. Optional.
SOA Attributes
Serial Number	Serial number of the zone's SOA record, which is incremented with each zone change. Required. Enter 1 or some other serial number. You can also retrieve the DNS server's value for the serial number by clicking the Refresh icon () next to the DNS Server Value field.
SOA TTL	Time-to-live for the SOA record. Optional. If omitted, the TTL is the Zone Default TTL value.
Nameserver	Primary DNS nameserver for the zone, as host name or fully qualified domain name. For example, ns1 (ns1.example.com. as fully qualified). Required.
Contact E-Mail	E-mail address of the hostmaster for the zone, in the form hostmaster (hostmaster.example.com. as fully qualified), or some other address. Required.
Secondary Refresh	Time at which to refresh records with the secondary DNS server, which defaults to 3h. Required.
Secondary Retry	Time at which to retry the secondary server for updates, which defaults to 60m. Required.
Secondary Expire	Time at which to expire records on the secondary server and send a zone update to it, which defaults to 7d. Required.
Minimum TTL	Minimum time-to-live of the SOA record, which defaults to 10m. Required.
Nameservers
NS TTL	Time-to-live of the NS record. Optional. If omitted, defaults to the Zone Default TTL value.
Nameserver List	You must add the primary nameserver name again here, as host name or fully qualified, then add any additional ones. Required. For each server added, click Add Nameserver. If you need to delete a nameserver, click the Delete icon () next to its name. This immediately removes the nameserver; you do not receive a confirmation page.

Resource Record Type	Data Field Format
A (Host Address RFC 1035)	ipaddress (IP address) Example: 192.168.50.123
A6 (IPv6 Address RFC 2874)	prefixlength<space>suffixaddr<space>prefixname Example: 0 2345:00c1:ca11:0001:1234:5678:9abc:def0 prefixlength is the subnet prefix length, encoded as an eight-bit unsigned integer with value between 0 and 128 inclusive. Required. suffixaddr is an IPv6 subnet suffix, encoded in network order (high order octet first). There must be exactly enough octets in this field to contain a number of bits equal to 128 minus prefix length, with 0 to 7 leading pad bits to make this field an integral number of octets. Pad bits, if present, must be set to zero when loading a zone file and ignored (other than for DNSSEC verification) on reception. Required if prefixlength is not 128. prefixname is the domain name prefix. Optional (do not include if the prefixlength is 0).
AAAA (IPv6 Address RFC 1884)	ipv6node or subnetprefix<space>interfaceid Example: 1345:c1:ca11:1:1234:5678:9abc:def0 ipv6node is the IP address of the IPv6 node. Required. subnetprefix is an IPv6 subnet prefix. Optional, but required if used with the interfaceid. interfaceid is the IP address of the network interface. Optional, but required if used with the subnetprefix.
AFSDB (Andrew File System Data Base RFC 1183)	subtype<space>hostname Example: 1 AFSDBhost.example.com. subtype is a 16-bit integer: with subtype 1, the host has an AFS version 3.0 Volume Location Server for the named AFS cell; with subtype 2, the host has an authenticated nameserver holding the cell-root directory node for the named DCE/NCA cell. Required. hostname is a domain name of a host that has a server for the cell named by the owner name of the record. Required.
CNAME (Canonical Name RFC 1035)	canonicalname (canonical name of the alias in the Name field) Example: host1234
HINFO (Host Information RFC 1035)	cpu<space>os (CPU type and operating system type of the host) Example: CPU1 OS2
ISDN (Integrated Services Digital Network Address RFC 1183)	isdnnumber<space>subaddr Example: 150862028003217 004 isdnnumber is the ISDN number of the owner and DDI (Direct Dial In), if any, as defined by E.164 [8] and E.163 [7], the ISDN and Public Switched Telephone Network numbering plan. E.163 defines the country codes, and E.164 the form of the addresses. Its format in master files is a character string syntactically identical to that used in TXT and HINFO records. subaddr is the subaddress, a character string syntactically identical to that used in TXT and HINFO records.
MB (Mailbox Domain Name RFC 1035)	mbox (domain name of the host with the specified mailbox) Example: mailbox.example.com.
MG (Mail Group Member RFC 1035)	mgroup (domain name of the mailbox that is a member of the mail group specified by the domain name) Example: mbgroup.example.com.
MINFO (Mailbox Information RFC 1035)	respmbox<space>errormbox Example: resp.example.com. error.example.com. respmbox is the domain name of the mailbox responsible for the mailing list or mailbox. If this domain name names the root, the owner of the MINFO record is responsible for itself. errormbox is the domain name of the mailbox to receive error messages related to the mailing list or mailbox specified by the owner of the MINFO record.
MR (Mail Rename RFC 1035)	newmbox (domain name of the mailbox that is the proper rename of the specified mailbox) Example: renamedmb.example.com.
MX (Mail Exchanger RFC 1035)	preference<space>exchange Example: 10 exchanger.example.com. preference is a 16-bit integer that specifies the preference given to this record among others at the same owner. Lower values are preferred. exchange is the domain name of the host willing to act as a mail exchange for the owner name.
NAPTR (Naming Authority Pointer RFC 2915)	order<space>pref<space>flags<space>serv<space>regexp<space>replace Example: 4.3.2.1.6.7.9 naptr 100 10 u sip+E2U /^.$/sip:info@tele2.se/ . order* is a 16-bit integer specifying the order in which the NAPTR records are processed to ensure the correct ordering of rules. pref is a 16-bit unsigned integer that specifies the order in which NAPTR records with equal order values are processed, low numbers being processed before high numbers. flags is a character string containing flags to control aspects of the rewriting and interpretation of the fields in the record. Flags are single characters from the set [A-Z0-9] (case is not significant). The four flags are "S" (the next lookup should be for SRV records), "A" (the next lookup should be for an A, AAAA, or A6 record), "U" (the next step is not a DNS lookup but that the output of the regexp is an URI that adheres to the absolute URI production found in the ABNF of RFC 2396, and "P" (the remainder of the application side algorithm is done protocol-specific). serv is the service(s) or protocol(s) available down the rewrite path (must be a protocol if the flags field states that the NAPTR is terminal). regexp a regular expression string containing a substitution expression that is applied to the original string held by the client to construct the next domain name to look up. replace is the fully qualified domain name of the next Name to query for NAPTR, SRV, or address records, depending on the value of the flags field.
NSAP (Network Service Access Point Address RFC 1706)	nsapaddress (variable length string of octets containing the NSAP address; the value is the binary encoding of the NSAP as it would appear in the CLNP source or destination address field) Example: 39840f80005a0000000001e13708002010726e00
PTR (Pointer RFC 1035)	dname (reverse mapping IP address, specifically in the in-addr.arpa zones for translation of addresses to names; PTRs use official names, not aliases) Example: host1234.example.com.
RP (Responsible Person RFC 1183)	mbox<space>txthost Example: resp.example.com. text.example.com. mbox is a domain name that specifies the mailbox for the responsible person. Its format in master files uses the DNS convention for mailbox encoding, identical to that used for the RNAME mailbox field in the SOA record. txthost is a domain name for which TXT records exist. A subsequent query can retrieve the associated TXT resource records there. This provides a level of indirection so that the entity can be referred to from multiple places in the DNS.
RT (Route Through RFC 1183)	pref<space>intermediatehost Example: 10 routthru.example.com. pref is a 16 bit integer, representing the preference of the route. Smaller numbers indicate more preferred routes. intermediatehost is the domain name of the host to serve as an intermediate in reaching the host specified by the Owner. The resource records associated with this host are expected to include at least one A, X25, or ISDN record.
SRV (Service Location RFC 2782)	priority<space>weight<space>port<space>target Example: 10 1 60 host7.example.com. priority is the priority of this target host. A client tries to contact the target host with the lowest numbered priority it can reach; target hosts with the same priority are tried in an order defined by the weight field. The range is 0-65535. weight is the relative weight for entries with the same priority. Larger weights are given a proportionately higher probability of being chosen. The range is 0-65535. port is the port on this target host of this service. The range is 0-65535. target is the domain name of the target host. There must be one or more address records for this name, and it cannot be an alias.
TXT (Text RFC 1035)	textstring (one or more character strings) Example: "this message"
WKS (Well Known Services RFC 1035)	addr<space>protocol<space>servicelist Example: 192.168.40.56 tcp telnet addr is a 32-bit IP address, to provide availability information for servers for TCP and UDP. protocol is an 8-bit IP protocol number. servicelist is one bit per port of the specified protocol (RFC 1010).
X25 (X.25 Address RFC 1183)	psdnaddr (Public Switched Data Network address in the X.121 numbering plan associated with the Owner; its format in master files is a character string syntactically identical to that used in TXT and HINFO records) Example: 311061700956

Field/Choice	Description
Attribute
Name	Template name, which must be unique. Required.
Zone Owner	Choose an owner name, if needed, from the drop-down list, as created by clicking Administration on the Primary Navigation bar, then Owners on the Secondary Navigation bar. Optional. No choices if constrained.
Zone Distribution	Choose a zone distribution, if needed, from the drop-down list, as created by clicking Zone Distribution on the Secondary Navigation bar. Default is the default zone distribution. Optional. No choices if constrained.
Zone Default TTL	Default time-to-live for the zone data, which defaults to 24h. Optional.
SOA Attributes
Serial Number	Serial number of the zone's SOA record, which is incremented with each zone change. Required. Enter 1 or some other serial number.
SOA TTL	Time-to-live for the SOA record. Optional. If omitted, the TTL is the Zone Default TTL value.
Nameserver	Primary DNS nameserver for the zone, as host name or fully qualified domain name. For example, ns1 (ns1.example.com. as fully qualified). Required.
Contact E-Mail	E-mail address of the hostmaster for the zone, in the form hostmaster (hostmaster.example.com. as fully qualified), or some other address. Required.
Secondary Refresh	Time at which to refresh records with the secondary DNS server, which defaults to 3h. Required.
Secondary Retry	Time at which to retry the secondary server for updates, which defaults to 60m. Required.
Secondary Expire	Time at which to expire records on the secondary server and send a zone update to it, which defaults to 7d. Required.
Minimum TTL	Minimum time-to-live of the SOA record, which defaults to 10m. Required.
Nameservers
NS TTL	Time-to-live of the SOA record. If omitted, defaults to the Zone Default TTL value. Optional.
nameservers	You must add the primary nameserver name again here, as host name or fully qualified, then add any additional ones. Required. For each server added, click Add Nameserver. If you need to delete a nameserver, click the Delete icon () next to its name. This immediately removes the nameserver; you do not receive a confirmation page.

Column	Description
Name	Name of the local cluster and its VPNs. If necessary, click the cluster name to open the Edit Server Cluster page. You can also view the zone template data by clicking its name to open the View Zone Template page.
Update Replica Data	To update the replica data for the local cluster on the regional cluster, click the Replica icon ().
Pull Data	To pull a specific zone template, click Pull Zone Template next to its name. To pull all the zone templates from the cluster, click Pull All Zone Templates. This opens the Report Pull Replica Zone Templates page.

Field/Choice	Description
Data to Push	Zone template chosen to push to the local clusters, or All Zone Templates. Click the template link to open the View Zone Template page.
Data Synchronization Mode	Mode to use to synchronize at the regional and local clusters. Required. Click one of the radio buttons: Ensure -- The default: Ensures that the local cluster has the new data without affecting any existing data. Replace -- Replaces the data without affecting other objects that are unique to the local cluster. Exact -- Available for "push all" operations only: Use with caution, because it puts an exact copy of the object data on the local cluster, thereby overwriting any existing data and deleting objects that are unique to the local cluster.
Destination Clusters	List of known local clusters. Move the desired cluster or clusters from the Available field into the Selected field using <<. To choose all the clusters, click Select All, then << to move them. To remove one or more clusters, click its name or names in the Selected list, then click >> to move it or them to the Available list. You must move at least one cluster to Selected to make the push operation work.

Field	Description
Name	Host name of the secondary server.
IP Address	IP address of the server.
Administrator Username	Username of the administrator of the secondary server.
Administrator Password	Password of the administrator of the secondary server.
SCP Port Number	CCM SCP port number to communicate with the target server. Check the target system for this port number, which is set during Network Registrar installation. On Windows systems, the installation sets the CNR_CCM_PORT registry key. On Solaris and Linux systems, the installation sets the CNR_CCM_PORT variable in the install-dir/conf/nwreglocal.conf file. The default is 1234.
Master Servers	IP addresses of one or more master DNS servers for the secondary server that are apart from the Authoritative Server IP Addresses specified in the zone distribution. In this way, you can have different master servers for each secondary server. Separate their IP addresses with commas.