Help BIND-8.2.x
Brad Knowles
brad.knowles at skynet.be
Fri Aug 10 09:27:41 UTC 2001
At 11:29 AM +0300 8/10/01, Odhiambo Washington wrote:
> I am running bind 8.2.3 and 8.2.4 on 4 machines here. Somehow my servers
> seem to be giving me some headache.
> The servers are ns1.wananchi.com and ns2.wananchi.com
> Could someone with a few minutes to spare just run some tests and point
> any obvious errors on these 2 servers and guide me on what I maybe
> missing.
I checked out the zone with the latest version of "doc", and it
doesn't detect any DNS delegation errors between the domain
wananchi.com and the parent .com gTLD servers. However, dnswalk is
going absolutely friggin' nuts over the zone itself:
% dnswalk -alF wananchi.com.
Checking wananchi.com.
Getting zone transfer of wananchi.com. from ns1.wananchi.com...failed
FAIL: Zone transfer of wananchi.com. from ns1.wananchi.com failed: REFUSED
Getting zone transfer of wananchi.com. from ns2.wananchi.com...done.
SOA=ns1.wananchi.com contact=tole.wananchi.com
BAD: smtp.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
smtp.wananchi.com?)
BAD: smtp.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
loita-pop.wananchi.com?)
BAD: tikenya.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
tikenya.wananchi.com?)
BAD: tikenya.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: scripts.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
scripts.wananchi.com?)
BAD: scripts.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: forums.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
forums.wananchi.com?)
BAD: forums.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: swyaa.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
swyaa.wananchi.com?)
BAD: swyaa.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: mail.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
mail.wananchi.com?)
BAD: mail.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: wap.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of wap.wananchi.com?)
BAD: wap.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: pop.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of pop.wananchi.com?)
BAD: pop.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
nocol.wananchi.com?)
BAD: safaris.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
safaris.wananchi.com?)
BAD: safaris.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: sportsmansarms.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
sportsmansarms.wananchi.com?)
BAD: sportsmansarms.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: prosel.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
prosel.wananchi.com?)
BAD: prosel.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: webmail.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
webmail.wananchi.com?)
BAD: webmail.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: wecandoit.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
wecandoit.wananchi.com?)
BAD: wecandoit.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: ns1.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of ns1.wananchi.com?)
BAD: allabout.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: allabout.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
allabout.wananchi.com?)
WARN: lagoon.wananchi.com A 62.8.66.13: no PTR record
BAD: www.junglecraft.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
www.junglecraft.wananchi.com?)
FAIL: Cannot get SOA record for www.junglecraft.wananchi.com from
ns2.wananchi.com (lame?): query timed out
BAD: www.mwambarfc.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
www.mwambarfc.wananchi.com?)
BAD: www.mwambarfc.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: sunrays.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
sunrays.wananchi.com?)
BAD: sunrays.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: friendly.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
friendly.wananchi.com?)
BAD: friendly.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: msagw.wananchi.com A 62.8.66.1: no PTR record
BAD: webcare.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
webcare.wananchi.com?)
FAIL: Cannot get SOA record for webcare.wananchi.com from
ns2.wananchi.com (lame?): query timed out
WARN: pm-mombasa.wananchi.com A 62.8.66.19: no PTR record
WARN: ns1.wananchi.com: possible duplicate A record (glue of
thika-pop.wananchi.com?)
FAIL: Cannot get SOA record for www.asea.wananchi.com from
ns1.wananchi.com (lame?): query timed out
WARN: ns1.wananchi.com: possible duplicate A record (glue of
www.asea.wananchi.com?)
BAD: www.asea.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: gw.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of gw.wananchi.com?)
BAD: gw.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: msa.wananchi.com A 62.8.66.3: no PTR record
BAD: tucows.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
tucows.wananchi.com?)
BAD: tucows.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: pwani.wananchi.com A 62.8.66.11: no PTR record
WARN: mail0.wananchi.com A 212.49.74.3: no PTR record
BAD: www.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of www.wananchi.com?)
BAD: www.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: sportsmonthly.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
sportsmonthly.wananchi.com?)
BAD: sportsmonthly.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: mtkenya.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
mtkenya.wananchi.com?)
BAD: mtkenya.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: longonot.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
longonot.wananchi.com?)
BAD: longonot.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: proxy.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
proxy.wananchi.com?)
BAD: proxy.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: acr.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of acr.wananchi.com?)
BAD: acr.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of
list.wananchi.com?)
4 failures, 39 warnings, 54 errors.
And here's what DNS Expert Professional 1.6 (see
<http://www.menandmice.com/2000/2100_dns_expert.html>) has to say
about this domain:
DNS Expert
Detailed Report for wananchi.com.
8/10/01, 11:13 AM, using the analysis setting "Everything"
======================================================================
Information
----------------------------------------------------------------------
Serial number: 2001081001
Primary name server: ns1.wananchi.com.
Primary mail server: mail.wananchi.com.
Number of records: 140 (69 NS, 2 MX, 64 A, 5 CNAME, 0 PTR, 0
Other)
Errors
----------------------------------------------------------------------
o Non-authoritative data received from the server "ns1.wananchi.com."
The server "ns1.wananchi.com." is listed as being authoritative
for the domain, but it does not contain authoritative data for it.
o Non-authoritative data received from the server "ns2.wananchi.com."
The server "ns2.wananchi.com." is listed as being authoritative
for the domain, but it does not contain authoritative data for it.
o Unable to resolve the host name "mtkenya.wananchi.com." used in the
CNAME record "aberdares.wananchi.com."
It was not possible to resolve the host name
"mtkenya.wananchi.com." which is used in the CNAME record for
"aberdares.wananchi.com." This indicates that a host with the
name "mtkenya.wananchi.com." does not exist.
o Non-authoritative data received from the server "ns1.wananchi.com."
The server "ns1.wananchi.com." is listed as being authoritative
for the domain, but it does not contain authoritative data for it.
o Non-authoritative data received from the server "ns2.wananchi.com."
The server "ns2.wananchi.com." is listed as being authoritative
for the domain, but it does not contain authoritative data for it.
o Unable to resolve the host name "mail.wananchi.com." used in the MX
record "wananchi.com."
It was not possible to resolve the host name "mail.wananchi.com."
which is used in the MX record for "wananchi.com." This
indicates that a host with the name "mail.wananchi.com." does not
exist.
o Unable to verify the hostmaster address "tole at wananchi.com" because
no mail servers answered.
It was not possible to verify the hostmaster address
"tole at wananchi.com" because none of the mail servers that process
mail for the domain answered.
o The reverse record "4.64.8.62.in-addr.arpa." does not refer to the
host "everest.wananchi.com."
The reverse record "4.64.8.62.in-addr.arpa." refers to
"ns2.wananchi.com.", but it should refer to
"everest.wananchi.com.".
o The reverse record "103.64.8.62.in-addr.arpa." does not refer to
the host "viper.wananchi.com."
The reverse record "103.64.8.62.in-addr.arpa." refers to
"www.mwananchi.com.", but it should refer to
"viper.wananchi.com.".
o There is no PTR record for the host "msagw.wananchi.com."
There is no PTR record available for the host
"msagw.wananchi.com." which has the IP address 62.8.66.1.
o There is no PTR record for the host "msa.wananchi.com."
There is no PTR record available for the host "msa.wananchi.com."
which has the IP address 62.8.66.3.
o There is no PTR record for the host "pwani.wananchi.com."
There is no PTR record available for the host
"pwani.wananchi.com." which has the IP address 62.8.66.11.
o There is no PTR record for the host "lagoon.wananchi.com."
There is no PTR record available for the host
"lagoon.wananchi.com." which has the IP address 62.8.66.13.
o There is no PTR record for the host "pm-mombasa.wananchi.com."
There is no PTR record available for the host
"pm-mombasa.wananchi.com." which has the IP address 62.8.66.19.
o There is no PTR record for the host "mail0.wananchi.com."
There is no PTR record available for the host
"mail0.wananchi.com." which has the IP address 212.49.74.3.
o The reverse record "174.85.122.216.in-addr.arpa." does not refer to
the host "kinanda.wananchi.com."
The reverse record "174.85.122.216.in-addr.arpa." refers to
"wananchi.com.", but it should refer to "kinanda.wananchi.com.".
Warnings
----------------------------------------------------------------------
o The name server "ns1.wananchi.com." does not permit zone transfers
The name server "ns1.wananchi.com." has been configured to reject
unauthorized zone transfers and the application will not be able
to use data from this server while analyzing the zone.
o Unable to perform zone transfer from the primary server
"ns1.wananchi.com."
It was not possible to perform a zone transfer from
"ns1.wananchi.com.", which is listed as being the primary server
for the zone. Zone data from the server "ns2.wananchi.com." will
be used instead.
o The zone contains more than one A record with the address 62.8.64.3
There is more than one A record in the zone with the IP address
62.8.64.3.
o The A record "ns1.wananchi.com." is duplicated
The zone contains more than one A record with the host name
"ns1.wananchi.com." and IP address 62.8.64.3
o All name servers for the zone are on the same subnet.
All name servers for the zone are on the same subnet (62.8.64.*).
If the connection to the network breaks, your domain will become
inaccessible.
o There is more than one PTR record for the address 62.8.64.4
The reverse domain contains more than one PTR record for the IP
Address 62.8.64.4
o The server "ns1.wananchi.com." claims that the host or domain
"101.64.8.62.in-addr.arpa." does not exist
When queried, the server "ns1.wananchi.com." responded with a
message saying that the host or domain
"101.64.8.62.in-addr.arpa." did not exist.
o The server "ns1.wananchi.com." claims that the host or domain
"102.64.8.62.in-addr.arpa." does not exist
When queried, the server "ns1.wananchi.com." responded with a
message saying that the host or domain
"102.64.8.62.in-addr.arpa." did not exist.
o The server "ns1.wananchi.com." claims that the host or domain
"112.64.8.62.in-addr.arpa." does not exist
When queried, the server "ns1.wananchi.com." responded with a
message saying that the host or domain
"112.64.8.62.in-addr.arpa." did not exist.
o The server "ns1.wananchi.com." claims that the host or domain
"114.64.8.62.in-addr.arpa." does not exist
When queried, the server "ns1.wananchi.com." responded with a
message saying that the host or domain
"114.64.8.62.in-addr.arpa." did not exist.
o The server "ns1.wananchi.com." claims that the host or domain
"129.64.8.62.in-addr.arpa." does not exist
When queried, the server "ns1.wananchi.com." responded with a
message saying that the host or domain
"129.64.8.62.in-addr.arpa." did not exist.
----------------------------------------------------------------------
end of report
> Also, I am setting up some reverse zone but I get a strange error:
>
> Aug 10 11:13:19 ns1 named[26287]: owner name "0/25.74.49.212.IN-ADDR-ARPA" =
> IN (primary) is invalid - rejecting
What does this zone file look like?
--
Brad Knowles, <brad.knowles at skynet.be>
H4sICIFgXzsCA2RtYS1zaWcAPVHLbsMwDDvXX0H0kkvbfxiwVw8FCmzAzqqj1F4dy7CdBfn7
Kc6wmyGRFEnvvxiWQoCvqI7RSWTcfGXQNqCUAnfIU+AT8OZ/GCNjRVlH0bKpguJkxiITZqes
MxwpSucyDJzXxQEUe/ihgXqJXUXwD9ajB6NHonLmNrUSK9nacHQnH097szO74xFXqtlbT3il
wMsBz5cnfCR5cEmci0Rj9u/jqBbPeES1I4PeFBXPUIT1XDSOuutFXylzrQvGyboWstCoQZyP
dxX4dLx0eauFe1x9puhoi0Ao1omEJo+BZ6XLVNaVpWiKekxN0VK2VMpmAy+Bk7ZV4SO+p1L/
uErNRS/qH2iFU+iNOtbcmVt9N16lfF7tLv9FXNj8AiyNcOi1AQAA
More information about the bind-users
mailing list