NETWORK CONFIGURATION


Ensuring DNS resolves in advanced TCP/IP configurations
When you have IBM® Lotus® Domino™ servers with multiple IBM® Lotus® Notes® network ports for TCP/IP, follow these procedures to ensure server name-to-address resolution by DNS. This topic covers the following configurations: For information on server access via independent resolve, see the topic Setting up a private LAN for a cluster.

Users in different DNS subdomains accessing one Domino server
If users are on two isolated networks and the Domino server has a NIC for each network, use DNS to direct the users to the NIC the server shares with them.

1. Assign an IP address to each NIC by creating A records (or, for IPv6, AAAA records) in DNS. Use the ping command and the IP address to test the responsiveness of the NIC.


2. Create two CNAME records in DNS for the Domino server, linking the server's common name to each NIC name in the A records. (Using CNAME records for the Domino server provides diagnostic fidelity to test the network pathway independently of the server's name resolve.)

3. Add a second Notes network port for TCP/IP in Domino.

4. Bind each TCP/IP port to the IP address of the appropriate NIC. On the server console, verify that both TCP/IP ports are active and linked to the correct IP address.

5. In the Server document's Net Address field for each TCP/IP port, use the server's common name only, not its FQDN.

6. On each Notes workstation, set the user's DNS name lookup scope to the correct DNS subdomain.

Example
At the Acme company, some users connect to the Domino server Chicago/Sales/Acme over an Ethernet network, others over a Token Ring network. Register the Domino server with DNS as chicago.east.acme.com for the users on the Ethernet network and as chicago.west.acme.com for users on the Token Ring network.

1. Create start of authority (SOA) table entries in DNS for the subdomain east.acme.com, as follows:
chi-ethernetA10.20.20.2
chicagoCNAMEchi-ethernet
2. Create SOA table entries in DNS for the subdomain west.acme.com, as follows:
chi-tokenringA10.10.10.1
chicagoCNAMEchi-tokenring
3. Change the name of the original Notes network port for TCP/IP to TCPIP1, and name the second port TCPIP2.

4. Use the NOTES.INI file to bind TCPIP1 to the IP address for the Ethernet network and to bind TCPIP2 to the IP address for the Token Ring network.

5. In the Server document's Net Address field for each TCP/IP port, enter chicago.

6. On the Ethernet users' workstations, set the DNS name lookup scope to east.acme.com, and on the Token Ring users' workstations, set it to west.acme.com.

User-to-server access and server-to-server access via different DNS subdomains
If users need to access a Domino server over the LAN and other Domino servers need to access the same server over the WAN, add a second NIC to the server. Then use DNS to direct the users to the NIC for the LAN and to direct other servers to the NIC for the WAN.

1. Assign an IP address to each NIC by creating an A record (or, for IPv6, AAAA record) in DNS. Use the ping command and the IP address to test the responsiveness of the NIC.


2. Create two CNAME records in DNS for the Domino server, linking the server's common name to each NIC name in the A records. (Using CNAME records for the Domino server provides diagnostic fidelity to test the network pathway independently of the server's name resolve.)

3. Add a second Notes network port for TCP/IP in Domino.

4. Bind each TCP/IP port to the IP address of the appropriate NIC. On the server console, verify that both TCP/IP ports are active and linked to the correct IP address.

5. To direct the Domino server's first outbound connection to the server-to-server network, edit the PORT setting in the NOTES.INI file to read as follows:


6. In the Server document's Net Address field for the first TCP/IP port (the port that users will use), enter the FQDN, using the server's common name and the users' DNS subdomain.
7. In the Server document's Net Address field for the second TCP/IP port (the port that servers will use), enter the FQDN, using the server's common name and the servers' DNS subdomain.
8. Set each user's DNS name lookup scope to the correct DNS subdomain.

9. In each server's TCP/IP stack, set the DNS name lookup scope to the correct DNS subdomain.

Example
At the Acme company, users connect to the Domino server BostonApp04/Sales/Acme over the LAN, and other Domino servers access it privately over the WAN. You register the server with DNS as bostonapp04.boston.acme.com for the LAN users and as bostonapp04.domino.acme.com for the server-to-server network over the WAN.

1. Create the following SOA table entries in DNS for the subdomain boston.acme.com, as follows:
usr-bostonapp04A103.210.20.2
bostonapp04CNAMEusr-bostonapp04


2. Create the following SOA table entries in DNS for the subdomain domino.acme.com, as follows:
srv-bostonapp04A103.210.41.1
bostonapp04CNAMEsrv-bostonapp04
3. Change the name of the original Notes network port for TCP/IP to TCPIP1, and name the second port TCPIP2.

4. Use the NOTES.INI file to bind TCPIP1 to the IP address for the user network, to bind TCPIP2 to the IP address for the server-to-server network, and to add the setting PORT=TCPIP2, TCPIP1.

5. In the Server document's Net Address field for port TCPIP1, enter bostonapp04.boston.acme.com. For port TCPIP2, enter bostonapp04.domino.acme.com.

6. On each user's workstation, set the DNS name lookup scope to boston.acme.com. In the TCP/IP stacks of the servers that need to connect to this server, set the name lookup scope to domino.acme.com.

See also