DNS Groups
The DNS tab Groups List allows you to create, view, and manage groups of DNS servers and zones. Using groups, you can configure and push selected combinations of zones at one time.
DNS Groups List Interface
1) Add Group Button: Opens a dialog for creating a DNS group
2) Resources Awaiting Approval Module - Group Level: Lists pending DNS group level approval events either submitted by, or able to be approved/rejected by, the current user.
3) Group Container: The group container header shows the group name. Expand or close the group container by clicking on the expansion arrow ( > ) on the far right of the header. Clicking on the X will delete the group and all zones included in the group. Rename the group by clicking on the name, then typing the desired changes and clicking outside of the name.
Group Actions:
4) Add Zone Button: Opens a dialog for creating a DNS zone under that group.
5) Push Group Button: Pushes all zones in the group.
6) Schedule Push Button: Schedules a push of all zones in the group to the selected day and time. Requires the scheduler tab / cron tasks to be enabled.
7) Export Zones: Exports all zones in the group into a .zip file.
8) Move Zones: Moves all zones in a group.
9) Perms (Admin): Provides a shortcut for Admin users to change the group/user permissions for the DNS group.
10) Resources Awaiting Approval Module - Zone List Level: Lists pending DNS Zone List level approval events either submitted by, or able to be approved/rejected by, the current user.
11) Zone List: Forward and reverse zones included in the group.
12) Forward / Reverse Zones Tabs: Shows zone list containing only forward or reverse zones, respectively.
13) Zone Name (Sortable): The name of the zone. Clicking on the zone name will open the zone details window, showing individual records. Clicking on the "Zone Name" header will sort the zone list by ascending or descending by name.
14) Last Pushed: The date and time the zone was last pushed.
15) Last Modified (Sortable). The date and time the zone was last modified. Clicking on the "Last Modified" header will sort the zone list by most / least recent modification date.
16) Records: How many records are in the zone.
17) Zone Status: Will notify if the zone or server connection contains errors, after a check has been performed (by clicking on the "Check" button). Clicking on the "Contains Errors" message will provide additional details on the error.
18) Actions: The actions that may be performed on each zone:
19) Delete: Deletes the zone from ProVision and removes the entry in ProVision conf file on the remote server(s) (the user will also receive a prompt to confirm they wish to complete the action)
20) Push: Pushes the zone to the associated server.
21) Move: Moves the zone to a different group.
22) Check: Performs a check on the zone, notifying the user if errors or warnings are present for the zone.
23) Perms (Admin): Provides a shortcut for Admin users to change the group/user permissions for the zone.
24) Attached Servers: Sets the server that zone and group pushes will be sent to. Click on the header title or > to expand or collapse. Admins and users with server/group parent permissions may view, attach, or detach a server from the group.
25) Group Default Parameters: Click on the header title or > to expand or collapse. Edit default group settings including nameservers, SOA values, and Push Policy.
26) Applied ACLs: Click on the header title or > to expand or collapse. Add or detach ACLs to the group.
27) Catalog Zone Settings: Click on the header title or > to expand or collapse. Enable / Disable Catalog Zones. Enabling Catalog Zone exports all zones inside the group into a new catalog zone, so that slave servers can receive zone changes.
28) Scheduled Tasks: If a scheduled push has been set up for the group, the task information will show in a "Scheduled Tasks" module. Click on the header title or > to expand or collapse. Review or delete scheduled group pushes.
Working with DNS Groups
DNS groups allow for organizing multiple zones together and linking those zones with one or more servers. Default nameservers, SOA values, and ACL's are set at the group level, so different groups may have their own default values. Zones may be pushed individually, as a group, or at the server level.
ProVision automatically designates a Default Group for zones to be imported or added to, as well as a "templates" group for holding pre-DNSv3 templates or to hold new zones created as templates. Creating additional groups is completely optional.
Add a Group
DNSv3 automatically contains two groups - one Default Group to contain existing or imported zones, and a Templates Group, containing zones mimicking DNS templates. Additional groups may be added or removed at any time, and zones may be freely moved or duplicated between different groups as needed.
To create a new Group, from the DNS Tab, select the DNS Groups sub menu. Then, click the "Add Group" button at the top of the page.
This will open the "Create New Group" dialog.
Edit a Group
Edit a Group Name
Edit the name for a group by clicking inside the group's name. A highlight box will appear around the name, and a cursor inside the box.
Edit the text as desired using your mouse or arrow keys to navigate through the text. When complete, click anywhere outside of the name box, and a confirmation dialog will appear.
Click "Confirm" to save your changes, or "Close" to exit without saving.
Edit Attached Servers
Users may attach or detach servers from a group if they have either of the following permission types:
- TLR Admin permissions
- Full permissions on both the DNS server(s) and the parent resource set for the DNS group
If either condition is met, the user may view and attach/detach the applicable server(s) to a group.
Edit a Group's Default Parameter Values
Under the desired group, expand the "Group Default Parameters" module by clicking on the expansion arrow.
Save your changes!
Important - to ensure that your changes are saved while working in Group Default Parameter, click the "Save Group Settings" button under the Default SOA Values section - this save button will save any changes made to Advanced Settings, Default Nameservers, or Default SOA Settings.
Push Policy changes can be saved by clicking "Save Push Policy".
Edit Group Advanced Settings
Open the "Advanced Settings Inherited by the Zones" module by going to any DNS group and opening the "Group Default Parameters".
The Advanced Settings module will be at the top of Default Parameters area. To expand it, click on the expansion arrow on the right side of the header bar.
Edit Nameservers
Default Nameservers are automatically added to any newly created zone files.
You may choose not to set a default nameserver, however, an empty Nameservers list can cause invalid zones.
Edit Push Policy
Edit the push policy by selecting the radio next to the desired push behavior ("Group Centric", "Zone Centric", or "Server Centric") and click "Save Push Policy".
Edit SOA Values
To edit the Default SOA values, simply click inside the value to be changed and type or select your new value. Be sure to also verify the desired parent resource for the group, as the resource selected determines the group's permissions.
Save Changes
Save all Nameserver, Advanced Settings, and SOA value changes by clicking on the "Save Group Defaults" button at the bottom of the section.
Closing without saving will cause all changes to be lost.
Add Zones to a Group
To add a new zone to a group, click the "Add Zone" button inside the desired group.
Fill in the zone name, select a parent resource (by default, the group is selected), select a populate type, and fill in any optional fields.
For more detail on each of these options, see Working with DNS Zones - Add a Zone.
When complete, hit the "Save Changes" button.
Pushing a Group
Before pushing a group for the first time, verify the settings in the following areas are correct:
- Under "Attached Servers", verify that the correct server is attached to the DNS group.
- Under "Group Default Parameters" verify SOA Settings, Nameservers, and the Push Policy are set.
Manual Group Push
After verifying the attached server and group settings, manually push the group by clicking the "Push Group" button under the desired group.
Users can customize a push by choosing an option from the push options modal and clicking "Execute Push". To push normally, click "Execute Push" without selecting any options.
A DNS Push Status window appears, showing each zone in the group as it is pushed to the attached server. If successful, a green "Finished DNS Pushing Request" will appear as the final message. If errors occur, an error message will show with details on the issue. When complete, hit the "Close" button.
Scheduled Group Push
Scheduled pushes may be set up through the "Schedule Push" button for the group.
Delete a Group
Delete a non-Default Group by clicking on the "X" to the left of the group's name in the DNS Groups List.
A confirmation message will appear, click "Confirm" to save your changes, or "Close" to exit without saving.
The Default Group may not be deleted.
Export a Group
All zones under a DNS group may be exported to a .zip file by clicking the "Export Zones" button at the top of the group module.
The exported .zip file may be used with the BIND DNS Zone Upload / Import tool.
Move a Group
All zones under a DNS group may be moved to another group by clicking the "Move Zones" button at the top of the group module.
Using the Templates Group / Cloning Zones to a Group
By default, a "templates" group is included in DNSv3.
Any pre-DNSv3 DNS Templates will be included in this group, as well as any newly created zones to be used as template zones.
The template group functions the same as any other DNS Group, but gives a holding place for zones designed as templates separate from other zones.
Additional Information
For more information on DNSv3 tasks, see: