Use vNIOS Instance as Primary DNS for VPC

Infoblox vNIOS for AWS instances can be used as the primary DNS servers for AWS VPC. This allows you to extend your enterprise DNS and RPZ services into your AWS networks.

Setup DNS Service

First, we will configure basic DNS service on the Infoblox vNIOS for AWS instance. In this guide we will configure the server for both authoritative and recursive DNS; in production environments you will likely want to separate these roles on multiple appliances.

1. Login to your vNIOS for AWS instance Grid Manager GUI.

2. Navigate to the Grid → Grid Manager → Services tab.

3. Click on the DNS service.

Open

4. Select the checkbox next to your vNIOS member. 

5. Click the start button to start the DNS service.

Open

6. Click Yes in the popup window to confirm.

Open

7. Once the service is started, open the dropdown next to Edit in the right-hand menu.

8. Select Grid DNS Properties.

Open

9. In the Grid DNS Properties window, select the Queries tab.

10. Optionally, change Allow queries to Set of ACEs. 

11. Use the add dropdown to select IPv4 Network.

Open

12. For Address enter the network prefix for your VPC. For example: 172.17.0.0.

13. Use the Netmask slider to select the correct mask size. For example: /16.

14. Click Add.

Open

15. Scroll down and select Allow recursion.

16. Select Set of ACEs.

17. Use the add dropdown to select IPv4 Network.

Open

18. For Address enter the network prefix for your VPC. For example: 172.17.0.0.

19. Use the Netmask slider to select the correct mask size. For example: /16.

20. Click Add.

Open

21. Click Save & Close.

22. In the Warning window, click Yes.

Open

23. Click Restart in the banner that opens in the top of the window.

Open

24. Click the Restart button in the Restart Grid Services window.

Open

Add DNS Zone

1. To add an authoritative DNS zone, navigate to the Data Management → DNS → Zones tab.

2. Use the add dropdown to select Authoritative Zone.

3. On Step 1 of the Add Authoritative Zone Wizard, select Add an authoritative forward-mapping zone.

4. Click Next.

Open

5. On Step 2 enter a name for your DNS zone.

6. Click Next.

Open

7. On Step 3 select Use this set of name servers.

8. Use the add dropdown to select Grid Primary.

Open

9. Click Select. The single member of this Grid will automatically be selected.

10. Click Add.

Open

11. Click Save & Close to create the new zone. Or click Next to proceed to optional steps.

Open

12. Click Restart in the banner that opens at the top of the window.

13. Click the Restart button in the Restart Grid Services window.

Create AWS DHCP Options Set

AWS VPCs use DHCP options sets to specify optional configurations such as a default domain name or the DNS servers your instances should use. We will use an options set to make the Infoblox vNIOS for AWS instance the primary DNS server for a VPC. DHCP options sets cannot be modified after creation, so we will start by creating a new DHCP options set.

1. In the AWS Management Console, Use the Services menu to navigate to VPC under Networking & Content Delivery.

2. From the VPC menu, click on DHCP Options Sets.

Open

3. Click Create DHCP options set.

4. Enter a name for your option set.

5. Under Domain name servers, enter the private IP address of your vNIOS for AWS eth1 (LAN1) interface.

Open

6. Scroll down and click Create DHCP options set.

Open

7. To assign this DHCP options set to your VPC, select Your VPCs in the menu.

8. Select your VPC.

9. Use the Actions dropdown menu to select Edit VPC settings.

Open

10. Use the dropdown menu for DHCP options set to select the new options set you created.

Open

11. Scroll down to click Save.

Note: Any new VM instances you create in this VPC will use your Infoblox vNIOS for AWS appliance for DNS resolution. Existing VM instances must be rebooted to apply this change.