Big problem "dns timeout"
Kevin Darcy
kcd at daimlerchrysler.com
Sat Mar 6 00:11:19 UTC 2004
As the tool said: Le serveur n'ecoute pas ou ne repond pas en UDP sur le=20
port 53.
I confirm this: I can get a response from 82.224.132.15 via TCP but not=20
via UDP. Check your NAT and/or port-forwarding configuration.
=20
- Kevin
arnaud wrote:
>Hello,
>
>First, sorry for my poor english.
>
>-bind.9.2.3
>
>I tried to check my dns configuration of my public domain name.
>
>This site, http://www.afnic.fr/outils/zonecheck, give me a lot of
>dns timeout. So i don't understand why.
>
>1=B0) no activate iptables firewall for this test
>2=B0) the computer is behin a router who mades nat for port 53 and
>protocol udp et tcp.
>
>Sorry, but i preferred gives you my named.conf :
>
>-------
>
>controls {
> inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
>};
>
>key "rndc_key" {
> algorithm hmac-md5;
> secret "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX";
>};
>
>acl accor {
>127.0.0.1;
>192.168.0.0/24;
>};
>
>acl free {
>212.27.32.176;
>212.27.32.177;
>};
>
>acl xfert {
>80.67.173.196;
>};
>
>options {
> directory "/etc";
> pid-file "/var/run/named.pid";
> version "not register";
> query-source address * port 53;
> listen-on { 127.0.0.1; 192.168.0.1; 10.0.0.1;};
> interface-interval 0;
> forward first;
> forwarders { 212.27.32.176; 212.27.32.177; };
> // using with rndc stats
> statistics-file "/var/run/named.stats";
> zone-statistics yes;
> notify no;
> transfer-format many-answers;
> max-transfer-time-in 60;
> // recursive-clients 100;
> // tcp-clients 10;
>};
>view "internal-in" in {
> match-clients { accor; };
> recursion yes;
> additional-from-auth yes;
> additional-from-cache yes;
> allow-query { any; };
> zone "." {
> type hint;
> file "internal/db.root";
> };
> zone "127.in-addr.arpa" {
> type master;
> file "internal/db.127";
> };
> zone "255.in-addr.arpa" {
> type master;
> file "internal/db.255";
> };
> zone "0.168.192.in-addr.arpa" {
> type master;
> file "internal/db.reseau";
> };
> zone "ad-lx.net" {
> type master;
> file "internal/db.ad-lx.net";
> };
>};
>view "external-in" in {
> match-clients { any; };
> recursion no;
> additional-from-auth no;
> additional-from-cache no;
>
> zone "." {
> type hint;
> file "external/db.root";
> };
> zone "ad-lx.net" {
> type master;
> file "external/db.ad-lx.net";
> allow-query { any; };
> allow-transfer { xfert; };
> };
>};
>
>any idea for resolve this big problem.
>Perhaps it is not a dns problem ?
>
>Thanks.
>Arnaud.
>
>
>
>
>
> =20
>
More information about the bind-users
mailing list