Weird DNS Problems

Barry Margolin barmar at alum.mit.edu
Wed Dec 15 12:40:44 UTC 2004 

In article <cpp9c6$2c2f$1 at sf1.isc.org>,
 D McDonald <renski at sdf.lonestar.org> wrote:

> Sorry if this is a repeat, I signed up with renski at freeshell.org, and then 
> tried to send it out as renski at sdf
> 
> Hi All,
> 
> About a week ago we switched the DNS server of our domain saturncorp.com to 
> ns.saturncorp.com. It's a redhat
> machine running bind 9.2.3. However it now seems that on some DNS servers are 
> unable to resolve some addresses.
> For example on one isp www.saturncorp.com works fine (non-auth), but 
> ftp.saturncorp.com doesnt work. It appears
> that some of these servers are running on cache alone, im not sure. This is 
> only the second BIND server ive set
> up, and the first was a internal server. Below is my config file..

You still have the AT&T nameservers listed in your domain delegation, 
but they're not slaving off your server.  Contact AT&T and get them to 
update their configuration.

> $TTL 43200
> @ IN    SOA     12.23.213.25 sysop at saturncorp.com.      (

That should be:

@ IN SOA ns.saturncorp.com. sysop.saturncorp.com. (

>                                 14 ; serial
>                                 600 ; refresh, 2 minutes (TEMP VALUE FOR 
>                                 TESTING)
>                                 60 ; retry (TEMP)
>                                 3600000 ; expire
>                                 43200 ; ttl, 12 hours MAX for caching (TEMP)
>                                 )
> @               IN      A       12.23.213.10
>                 IN      NS      12.23.213.25

NS records must point to hostnames, not addresses.  That's being treated 
as:

    IN NS 12.23.213.25.saturncorp.com.

You should also list the slave nameservers in NS records.

>                 IN      MX      1       saturn3.saturncorp.com.
> saturn3         IN      A       12.23.213.3
> saturn4         IN      A       12.23.213.3  ; this is not a typo
> ; saturn1                       12.23.213.5  ; internal use only
> ; WVC WWW                       12.23.213.7
> www             IN      A       12.23.213.10
> smartsystem     IN      A       12.23.213.15
> ns              IN      A       12.23.213.25
> ns2             IN      A       12.23.213.26

If you have a second nameserver, why don't you list it in the NS records?

> webplus2        IN      A       12.23.213.42
> webplus3        IN      A       12.23.213.43
> ; lpar3 also                    12.23.213.61
> lpar3           IN      A       12.23.213.63
> lpar4           IN      A       12.23.213.64
> lpar1ftp        IN      A       12.23.213.71
> lpar3ftp        IN      A       12.23.213.73
> lpar4ftp        IN      A       12.23.213.74
> ftp3            IN      A       12.23.213.98
> ftp2            IN      A       12.23.213.99
> lpar1           IN      A       12.23.213.100
> ftp             IN      A       12.23.213.101
> vr              IN      A       12.23.213.9
> 
> If you set the server as your dns server it works fine, and ive checked the 
> domain under whois,
> and the first listed server is ns.saturncorp.com. I just dont get it. If 
> anyone can see
> something im doing wrong, id be most grateful.
> 
> Thanks,
> 
> Renski

-- 
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***

More information about the bind-users mailing list