Internal root DNS server problems

Mark_Andrews at isc.org Mark_Andrews at isc.org
Wed Oct 23 00:36:32 UTC 2002 

> For complex (and stupid) reasons which are out of my control, I am setting
> up a root DNS server within my private network. The root server is to handle
> to "." zone (of course) for all internal queries. It also is authoritative
> for several zones, which it delegates to itself in the db.root file (in
> /var/named). It is also delegating authority for a top level zone (.gprs) to
> an external DNS server. (all of this sits on a network not connected to the
> public Internet)
> 
> I am seeing the following message in the /var/adm/messages file after
> starting the named daemon (Bind 8.3.1):
> 
> ... daemon.error] zone: ./IN: non-glue record below bottom of zone:
> mnc720.mcc302.gprs/NS
>  ... daemon.error] master zone "" (IN) rejected due to errors (serial 22)
> 
> When I use the same db.root file and named.conf file in BIND 8.2.2-P5 I
> don't get these messages and everything is loaded fine (named_dump.db looks
> good).

	That's because 8.2.x doesn't check for this error.

> 
> Here is the db.root file:
> *************************************************************
> $TTL 1d
> .     IN     SOA     to5idns1.mnc720.mcc302.gprs.
> root.to5idns1.mnc720.mcc302.gprs. (
>     22     ; serial
>     5h     ; refresh after 5 hours
>     2h     ; retry after 2 hour
>     1w     ; expire after 1 week
>     60  )     ; negative cache TTL of 60 sec
> ;
> ; ROOT DNS server definitions
> ;
>         IN         NS         to5idns1.mnc720.mcc302.gprs.
>         IN         NS         to5idns2.mnc720.mcc302.gprs.
> 
> to5idns1.mnc720.mcc302.gprs.         IN         A         172.25.0.2
> to5idns2.mnc720.mcc302.gprs.         IN         A         172.25.0.19
> ;
> ; zone delegation
> ;
> gprs.                                     IN         NS root-dns.gprs.
> mnc720.mcc302.gprs.          IN         NS to5idns1.mnc720.mcc302.gprs.
>                              IN         NS to5idns2.mnc720.mcc302.gprs.

	Well you have delegated the "gprs" zone.  The delegation of the
	"mnc720.mcc302.gprs" zone belongs in the "gprs" zone not ".".

	Mark

> ;
> ; Names to Addresses
> ;
> root-dns.gprs.         IN         A         66.116.110.35
> 
> 
> **************************************************************
> If I remove the delegation of the mnc702... zone and just leave the "." and
> "gprs." parts, all works fine. But once I add the mnc720... zone the error
> occurs and the entire db.root file is not loaded.
> 
> I have tried changing the order of the lines within the file just as a long
> shot and nothing works.  Everything appears to be the same format and syntax
> as in the example on pp. 338 - 339 of O'Reilly DNS and Bind 4th edition.
> 
> I'm stumped! Anyone, have any ideas? (I have gone back and recreated  the
> file by hand just to make sure something wasn't wrong with my original file
> and still no luck).
> 
> 
> Thanks, Frank
> 
> 
> 
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews at isc.org

More information about the bind-users mailing list