Big problem "dns timeout"
arnaud
nospam at nospam.nul
Fri Mar 5 23:41:34 UTC 2004
Hello,
First, sorry for my poor english.
-bind.9.2.3
I tried to check my dns configuration of my public domain name.
This site, http://www.afnic.fr/outils/zonecheck, give me a lot of
dns timeout. So i don't understand why.
1°) no activate iptables firewall for this test
2°) the computer is behin a router who mades nat for port 53 and
protocol udp et tcp.
Sorry, but i preferred gives you my named.conf :
-------
controls {
inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
};
key "rndc_key" {
algorithm hmac-md5;
secret "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX";
};
acl accor {
127.0.0.1;
192.168.0.0/24;
};
acl free {
212.27.32.176;
212.27.32.177;
};
acl xfert {
80.67.173.196;
};
options {
directory "/etc";
pid-file "/var/run/named.pid";
version "not register";
query-source address * port 53;
listen-on { 127.0.0.1; 192.168.0.1; 10.0.0.1;};
interface-interval 0;
forward first;
forwarders { 212.27.32.176; 212.27.32.177; };
// using with rndc stats
statistics-file "/var/run/named.stats";
zone-statistics yes;
notify no;
transfer-format many-answers;
max-transfer-time-in 60;
// recursive-clients 100;
// tcp-clients 10;
};
view "internal-in" in {
match-clients { accor; };
recursion yes;
additional-from-auth yes;
additional-from-cache yes;
allow-query { any; };
zone "." {
type hint;
file "internal/db.root";
};
zone "127.in-addr.arpa" {
type master;
file "internal/db.127";
};
zone "255.in-addr.arpa" {
type master;
file "internal/db.255";
};
zone "0.168.192.in-addr.arpa" {
type master;
file "internal/db.reseau";
};
zone "ad-lx.net" {
type master;
file "internal/db.ad-lx.net";
};
};
view "external-in" in {
match-clients { any; };
recursion no;
additional-from-auth no;
additional-from-cache no;
zone "." {
type hint;
file "external/db.root";
};
zone "ad-lx.net" {
type master;
file "external/db.ad-lx.net";
allow-query { any; };
allow-transfer { xfert; };
};
};
any idea for resolve this big problem.
Perhaps it is not a dns problem ?
Thanks.
Arnaud.
More information about the bind-users
mailing list