Setting up my own DNS Server

 Hasan -

I have my own registered domain. I want to set up my own DNS server and host a website completely independent of any third party hosting service. I have Windows Server 2003 and have installed the DNS role and configured it with a single forward zone (I am new to this terminology and am not sure if I am using it correctly). Lets say my domain is I have the DNS role set up for as the domain with a forward lookup zone. Also, I have reserved an internal IP to my server using the router's DHCP reservation list. So I basically have a static IP for my server on the internal network. How do I go about setting up this infrastructure so that I can have my own DNS set up and host my website ?

20 replies

Hi My name is David., I'd here you what to fine out how to setup DNS on your home Network., The very first thing that you do is setup your Router here are the steps to take.

step 1. Contact your ISP
step 2. And ack for and Static IP Block on your Network you will need at least two Computer 4 is Ideal.
step 3. the Subnet must be change tp /29 for for 2 computer or /30 for 6 computers.
step 4 One of the static IP's must be your Router., There For if you have and /30 Subnet you can only have 5 Computers.

know setting up your Router (The Router is your Gatway)

Step 1. go in your Rounter Config. page to setup
step 2. the first thing you do is Disable DHCP service
step 3. disable NAT
step 4. disable your Routers Fire wall
step 5. Turn on DMZ port but not nesuary
step 6. reboot your

Know seting up your Modem

step 1. go in your Modem Config. page to setup
step 2. Disable DHCP service
step 3.Disable NAT
step 4 Disable The Fire Wall
step 5. Turn on IP Bridging
step 6. Reboot Modem

Know on your Computers to setup your Fire wall.

Step 1. Click Start, click Run, type firewall.cpl, and then click OK.
Step 2. Click the Advanced Settings tab, click the Exceptions tab, and then click Add Port.
Step 3. In the Port Number dialog box, type 2725, and then click TCP.
Step 4. Type a name for the port, such as Analysis Services1, and then click OK.
Step 5. Click Add Port
Step 6. In the Port Number dialog box, type 2393, and then click TCP.
Step 7. Type a name for the port, such as Analysis Service2, and then click OK.
Step 8. Click Add Port
Step 9. In the Port Number dialog box, type 2394, and then click TCP.
Step 10.Type a name for the port, such as Analysis Services3, and then click OK.
Step 11. Click the Exceptions tab, and then click to select the check box that is next to each new service.
Step 12. Click OK
Step 13. On each one of your Computers add Ports HTTP Port is 80, Port 21 FTP server, DNS Port 53

Know you should make your Web Server your Localhost ( note Pad )

Step 1. Create a Host file
Step 2. click start at the bottom of the Desktop
Step 3. Click Run
Step 4. Type This Path c:\windows\system32\drivers\etc\host
Step 5. and Click on
Step 6. Know you will see a Host File scoll down to the Bottom of the last Line and put your hit Enter on your Keyboard
Step 7. Type the IP address of your Host Computer then your
Step 8 Like this 69.196.159.XXX and hit Enter
Step 9. IP and www. and hit Enter
Step 10 Like this 69.196.159.XXX
Step 11 if you want to at and FTP or DNS keep adding lines the same way
Step 12. and Save

Know to Step up your Domain

Step 1. you should Transfer it to Godaddy so you can Manage it
Step 2. with and Godaddy Account setup
Step 3. Goto Manage Domain
Step 4. With Manage Domain Open at the top of the page you will see Custom Name Servers
Step 5. Enter your IP Address of your DNS servers and point to them
step 6. and log out
step alow beween 30 to 78 Hours for the changes to take

You must reboot your Modem, Router, and all Computers

Note you must have Active Directory Intergreated installed on your network

let me know how it worked out.
Thank you

A few words of thanks would be greatly appreciated. Add comment

CCM 2942 users have said thank you to us this month

Hi , David
I want to ask you. Can you tell me please that how can I know Ip address? I logg in in DNS setting, but my new domain is not active. I cannot open and view. Need I change DNS setting? What I will click to active my domain? Shall I add host name and Ip address here
Set Host and IP Addresses Host name:

Host IP 1: Host IP 2: Host IP 3: Host IP 4:

Host IP 5: Host IP 6: Host IP 7: Host IP 8:

Host IP 9: Host IP 10: Host IP 11: Host IP 12:

Host IP 13:

Thank you
Kyaw kyaw
> Kyaw
hi Kyaw,

you can check your ip address here
Dear Friend,
I found your information very impressive.

I need a help. I own a domain and it runs classified ads for every one.

But now I wish to promote my domain to have maximum hits on it and for which I wish to send bulk emails.
But dont want any third party servers or smtp services.

Want to send it from my local machine and want to configure my own mail server.

Can u tell me what all configuration shall I need to do at my hosting account..

I own a static ip.
I have configured DNS Server and an Email Server.

but not being very clear with the concepts unable to go ahead.

Registration date
Wednesday May 19, 2010
Last seen
May 19, 2010

Hi, this is the same patern for IIS7 and Window7 ? Do you know where I could find a video that explain everything too ?

Thank you,

Taking matters into your own hands and handling your own DNS is not complicated at all. It is pretty easy, but you need to follow through the seemingly "difficult" steps... which are actually easier than setting up the DNS server itself.

Okay, so you installed your own DNS server. This DNS serves requests from outside, and now you're ready to hand out public IPs that correspond to the PCs that you're sharing with he world. And you have two (2) of these nameservers - named, and Right? (one of them is actually for backup; all of the more serious ISPs require you to have two NSs).

So here's what's left to do:

So in order to take this DNS business out of your ISP's hands, you need to call and tell your ISP to forward the requests for your domain to your NS1 and NS2 servers. You will need to give them the IP addresses of your 2 NSs, so have them ready before you call. (When you do call, make sure to ask for and talk to a network engineer - they'll do this on the spot). This is done free of charge by most ISPs, as they are more than happy to not have to manage your DNS records.

That's it.

Once they're done, your NS1 and NS2 will be published and cached on the internet's root servers (it'll take about 48 hours to propagate your NS1 and NS2 names to the majority of them, but expect functionality at least in the US within several hours).

So now, whenever someone searches for your website, will be forwarded by the internet root nameservers to your ISP, who will in turn redirect the request to your own NS1 or NS2 DNS servers, which in turn will respond however you want them to.

Lots of words for a simple thing.

Setting up a home web server is simple. If you do it though, check and make sure that your ISP allows you to do so. Here is my recommendation to begin:

1. Register your domain name with, or whomever you choose (

2. Determine whether you will have a public dynamic IP address (will change constantly) or a static ip address (usually have to pay for this from your ISP)

3. DNS Setup
a. If you are using a public dynamic IP address (which I am sure you are in this case), then set up a dynamic dns free account (go here - You will need to set up a username and password, which you will later use on the DynDNS Updater you will need to install on your Windows web server. Create the zone for your domain (ie. is a zone you create).

b. If you are using a static IP address, then make sure the name servers are 'Parked' with your domain provider, then set up a forward to the public static IP address of your home network (from here, you just set up port forwarding in your router/gateway to your web server and you should be done)

4. Web Server Configuration
I. set up a 'static' ip address on your network card which will manage the incoming connections. Make sure that IIS is listening for requests through this IP address via IIS Manager.

II. If you are going to use the dynamic dns configuration for DNS, then download the DynDNS Updater app to your windows server and it will manage the connection between your web server dns and dynamic dns servers (this is cool and easy)

III. Set up a test index.html in IIS Manager for your 'Default Site'. Open a web browser and open 'http://localhost' to make sure you can access the site.

IV. Make sure your Windows firewall allows traffic through port 80.

5. Router / Gateway Configuration - go to 'Port Forwarding', and forward all requests via port '80' to the static ip address of your webserver (ie. Allow Incoming Port '80' to 192.168.x.x')

6. From your web server, Go to ' and see what your public ip address is.

7. Once your IIS is set up, your port forwarding has been configured, and dynamic dns is updated, ping the domain you registered 'ie.' and see if it matches the IP address of your web server public ip.

8. From outside your local area network, try to access your domain ''. If success, then you are good to go. If no success, review all these steps again.

I hope this helps.

Chris Perez

I had to reply.

I just wanted to say thank you!

You are awesome!

I have been reading every book about networking trying to figure this out.

Thankfully, I have learned a lot, but your post has finally put it all together!

Also, thanks for being nice even though ur smart ;-)
Registration date
Saturday November 29, 2008
Last seen
December 8, 2008
make your static IP be forwarded from your router to the DNS hosting PC, create router's DNS and web server exceptions, start DNS and Web services
I am not sure if you have checked in to getting a static ip address? usually for a little extra your isp will provide one.
how to configure dns server in windows 2003
Dear Friend check this site.

I hope it will resolve all your queries.
Can someone give me an instructions in how to configured my webserver. In my case, I built my webserver (i.e. server1 and server2) server2 where I setup my webserver and I was able to access my website via local intranet access. Now I wanted to access my website via publicly internet and I don't know how to configure that part. I did signed-up for domain at however I don't know which ipaddress do I set to my account.

Any help would be appreciated........
> meganjo
I don't want to use your host... why are you advertising your host when that is not the subject?
> idsinc
hueoogle sounds like way more knowledgeable so please excuse my butt in... we appear to have similar goals in mind.

to answer your question: yes it can, I have just done so for similar reasons.

my setup:

1) I put a second ethernet card in my windows xp machine and configured tcp/ip to a different address block with a static address.
2) connected xp machine to an isolated switch.
3) downloaded complete install iso (not the network install) file from (took about 2 hrs for me. I chose debian lenny 5.0.3 after much homework, it seems to be the distro of choice.
a) make sure you run the md5 checksum. ( I ended up making coasters cuz I skipped this )
b) burn an installation disk
c) install debian linux
d) assign the server a static ip from the same address block you used in step 1
4) connect the linux server to the switch.
5) I then configured the ssh daemon to allow me to work from the xp box using a ssh client called putty.

i can give you more details of this process if needed. it seems that all the linux distros do it just a little bit different, and they put things in different places... this cost me much time when I switched to debian 5.0.3 just learning where things were. also stick to the command line for configuration stuff, in my experience the GUI front ends sometimes don't work, and are often limited in function even if they do work.

> Hueoogle
"when you are ready to get serious...get linux. All it cost is time."

my questions are going to be related to setting up BINDv9 under Debian Lenny. oh, and thank you in advance!

howdy! my name is bill. Judging from your post, you are just the person I'm looking for! I have settled on Debian lenny (5.0.3) at this point, after spending a great deal of time on openSUSE. I got some new hardware for the primary, and the secondary seems to be stable after replacing some memory. I've been studying DNS & Bind, and the companion Cookbook as well as the BINDv9 ARM, and have learned a lot, but having someone with more experience sure can be a great time saver. also I have discovered that the GUI configuration front ends don't always work...the CLIs do. Ive got a fair amount of experience with the nix command line, but I dang sure don't know it all. I STILL HAVE A GREAT DEAL TO LEARN!

my goal is the same as the person that started this thread, to have my own name servers, webserver, & mail server, without involving any 3rd parties or expenses. I want these to be "production servers". and if I can manage to generate some income from them, someday I hope to upgrade to T1 or T3 service, but for now DSL will have to do

I currently have 2 machines going, both with Debian 5.0.3 loaded from the multiarch DVD. Neither is connected to the web at the moment, mainly because I dont want to take ANY chance of messing up anything on the www through my own ignorance.

i have been doing my configuration via putty on my day to day xp machine on a second nic to the non exposed lan. I guess I should list some things

i have several domain names registered with godaddy.
i have a block of 5 static IPs thru AT&T.
my gateway will be a 2wire2701HG-B, (not the best choice i'm sure but it was free & easy to replace if it dies)
1.6ghz amd singlecore as primary name server and other services if powerful enough.
3.4ghz phenomX4 as slave name server, snort server, multiple website server, mail server.

both servers have passed named-checkconf & named-checkzone and bindv9 starts.

1) can my name servers cause any damage to "THE DNS" before they are registered in a parent zone? my thinking is that no datagrams can get transmitted b4 an external source requests it...

2) nslookup gets a response if I invoke it on my xp machine, but when I invoke the same nslookup on either nameserver I get a time out failure stating no servers could be reached ( I think this is due to the resolver not looking in the right place, but I havent figured out how to config the resolver in debian yet.)

3) slave nameserver having trouble with update from master nameserver - lines from syslog:

Feb 7 18:30:06 slaveNS named[3360]: zone Transfer started.
Feb 7 18:30:06 slaveNS named[3360]: transfer of '' from connected using
Feb 7 18:30:06 slaveNS named[3360]: dumping master file: /etc/bind/tmp-jNtGy473xf: open: permission denied
Feb 7 18:30:06 slaveNS named[3360]: transfer of '' from failed while receiving responses: permission denied
Feb 7 18:30:06 slaveNS named[3360]: transfer of '' from Transfer completed: 0 messages, 8 records, 0 bytes, 0.001 secs (0 bytes/sec)

im not sure how to interpret this looks like its a file permission problem on the local machine, but I dont know how to correct it without a kludge ( not sure a kludge will work either )

thats enough for now( the WILD TURKEY calls ), but I have many more questions.

thanks, bill
my post was to HUEOOGLE...
my bad, ima forum rookie...
i had to figure that out not to long ago myself.

do you have static ip addresses from your ISP?

there are name server services that provide hookup for both static & dynamic. if you intend to do your own name server, it would be much easier to have static IP.

do you have a router? this has to be configured to connect the external IP to the internal ip.

many more questions need to be answered, but maybe this can get you moving again
use zoneedit as a free DNS service... setting up your own is complicated... You'll have to find an online tutorial or get a book...
New Query :
Can anyone infor me if we can OWN an Static IP address ?
I am not an ISP...........
I have my own web application...and I need to have control n IP address
Yes -- you can have your own IP address -- although it depens on your ISP - contact them and tell them that you want to purchase a static IP address - most companys such as Sprint, AT&T will allow you to purchase a static IP address. -- hope this helps.
i woul really know how to do this......
Dont open up a DMZ, port forward 53 for DNS to the DNS server IP. This way only that port is open to the public.........

Some body answer this question
link is here

help me out
i have a LAN connection and I want to be mange to one centralizes system management so what can I do for this
I am kind of confused if I have a static IP or not.

In my router, the IP is set and will not be changed
But when I go to I get different results at different times and they are not the IP set in my router.

So do I have a static IP?
> vijji and are internal IP addresses (non routable) you will never be able to access a webpage from the outside using these IP address. However your router has a second IP address that it uses for external access that may or may not change (depending if you have acquired a static IP address from your ISP or not). Go to and it will tell you what your external IP address is. You need that IP address to access it from the outside, you will also need to set up port fowarding on the router to foward to you webservers internal IP.
Hi Gino,

You likely do not have a static IP.

Your machine has two unique IP addresses. The primary IP address is given to you from your Internet Service Provider, which is what you see when you go to the website. Since yours is changing, you do not have a static IP.

You are likely on a home network as well; you may have a router and multiple machines on your home network. This is where the second IP address comes in. This is your local IP address that is used to identify your specific machine on your home network. This means nothing to people outside of your network, and on the internet in general.

im guessing here, but it sounds like you are confusing your internal ip with the external one. whatsmyip is only Tgoing to return the external IP and if its always changing its probably dynamic not static. it all depends on your router and ISP contract.

hope this helps.
> bill
Hello Sir,

I m Nikhil working as software engineer. I need a help regarding with -

I have installed Window server 2003(SP 1). I want do setup like

1. Create email server for sending(SMTP) and recieving emails(IMAP4).

I don't want to use internet. I just want to use OS server 2003 would create domain and then configure email server in such way that I(User) would send email to my self and recieve that email too in client outlook.

Is it possible to do(dummy) in same machine(server 2003) wihtout using internet.

Please help.

Thanks a lot !!!!
> nikhil
Hi all you have to do is setup and gmail acount your domin name

Let me know how this works out for you
Hello , plz need help ....

i have my domain www. 12345 . com
i installed IIS 6 and made default web site
my public router static ip starts with 213...........
my server static ip starts with 62..........i have a block of 8 ips so to let you know

now I created a dns server , named ns1 ....
ns1 ... what ip should it use to take dns requests ? public router ip ? or server static private ip ?
when I create a hostA entry in forward zone what ip do I enter there ? my pc private ip ? my router public ip ?

hostA name = website ?

so that gives me ?

at the domain's nameserver menu I enter my but what ip to I enter there ? pc static ? router ip ?
i also from my router menu have on my pc port 80 and 21 open
when I do nslookup I get dsllan and my pc's primary dns adress.................
thank you for your help
u should considerer finding an easier solution.... setting ur own is complicated
Hi,for your DNS query use this site ,here DNS query available at free of cost,visit here for more details.
I have the same things I have the domain but im not sure how to set it up.

It's supposed to replace your internet ip but go-daddy didnt ask for that.
I have a domain registered in And my web server is hosted in our office and we have 2 isp, If 1 ip fails my web server should work with other isp, I need some help in making this configuration..

For ex: is my if any body tries to access it should be accessible even though my 1 isp is down..

Pls give me some hints and procedures , I am stuck here.