Cisco ACI and CCNA live online batches are starting from 24th June 2023. Join experts today. how to create bigip dns zone Archives - UniNets Blog

Tag Archive how to create bigip dns zone

BIG-IP F5 DNS Services – Resolving Queries Using Local BIND with Zone Runner on F5 DNS


Lab Name: BIG-IP DNS

Access full BIG-IP DNS lab guide here: BIG-IP DNS Workbook


This post will give detailed overview of “Resolving Queries Using Local BIND with Zone Runner on F5 DNS”

• Create a zone.
• Verify zone creation with Zone Runner.
• Configure for a zone transfer.
• Use nslookup to resolve a query


Local BIND server configuration is managed by BIG-IP F5 DNS system ZoneRunner utility. From remote DNS servers you can create new zones or transfer current zones using F5 DNS ZoneRunner utility. Resource records contained within a zone can be added or modified. After the DNS zone exists in local BIND, you can configure the BIG-IP DNS system to answer DNS name resolution requests or zone transfers to other name servers.

This section will give you configuration details on how to transfer zones in F5 DNS.

Primary Zone Configuration
• Create a primary DNS zone as below


Primary dns zone configuration

Primary dns zone configuration 2

Once you are done click on Finished.


A Record Configuration

  • Create an A record according to the mentioned diagram

DNS record configuration

Once you are done click on Finished.


Learn How to Setup: Palo Alto – LAB Initialization for Basic Connectivity (Initial Setup Palo Alto)


Create Other A Records

Create 5 more A records using the information in the following table.

Name TTL IP Address 30 30 30 10.10.X.54 30 10.10.X.60 30 10.10.X.61

NS Record Configuration

  • Create an NS record as below

NS record configuration

Click on Finished


MX Record Configuration

  • Create a MX record as below

MX record configuration

Click on Finished

CNAME Record Configuration

  • Create a CNAME record as below

CNAME record configuration

In order to verify the records, you have created go to DNS 8 Zones: Zone Runner: Resource Record List

Resource record list

Then click on Search


The above gui output will list you all the records you have created


Read this blog:  Microsoft Azure Technology and How You can Get Its Training


Examine the zone database file:

  • Cd /var/named/config/namedb
  • Less

Above mentioned commands will help verify the records on CLI

Verify records in CLI



Go to the management PC and take the command prompt and do the nslookup

NSLookup Console

First check the server IP address and then do the NSLOOKUP

Port Lockdown Settings

Listeners process DNS queries directed to port 53, but will not process zone transfers.  Port 53, both UDP and TCP, must be open on 10.10.X.1 for a zone transfer to succeed.

  • Modify the self IP address 10.X.1 on your BIG-IP DNS system to also allow access for zone transfers via UDP port 53 and TCP 53.

Port lockdown setting

Then leave rest default and click on Finished


Secondary Zone Configuration

  • Create a Secondary DNS zone as below

Secondary zone configuration

Allow Zone Transfer from

  • Allow zone transfers from as below


Go to the zone and allow zone-transfer to any as below

Zone transfer

Rest leave as is and click on Update.

 Now verify whether you can see the secondary zone created on not


Go to the CLI and give more /var/named/config/named.confupon doing so you may find the in the configuration

Secondary zone verification

Secondary zone verification

In between output is omitted

 But still we can verify that zone is created in the CLI configuration.

To enroll in Big-IP DNS instructor-led training: visit –