primary lame server
rioguia at speakeasy.net
rioguia at speakeasy.net
Wed Oct 27 13:56:08 UTC 2004
> -----Original Message-----
> From: Barry Margolin [mailto:barmar at alum.mit.edu]
> Sent: Wednesday, October 27, 2004 06:45 AM
> To: comp-protocols-dns-bind at isc.org
> Subject: Re: primary lame server
>
> In article <clncdf$2kvc$1 at sf1.isc.org>, rioguia at speakeasy.net wrote:
>
> > I have a lame primary name server testy.substantis.com.
> > My files appear to be formatted correctly (my /etc/host and resolve.conf =
> > are shown below) because named-checkconf returns a zero status. I also a=
> > ttempted to use DNSWalk but can't find any documentation on how to use it=
> > (sample command lines would be appreciated.
>
> It looks like testy isn't successfully loading the zone file for
> substantis.com.
>
> Since you haven't posted any of your configuration files, I don't know
> how you expect us to figure out what you did wrong.
>
> >
> > I do see in the the following errors in the logs
> > rndc: connect failed: connection refused
> >
> > Oct 27 00:55:48 testy kernel: process `nslookup' is using obsolete setsoc=
> > kopt SO_BSDCOMPAT
> > Oct 27 04:55:48 testy named[3907]: lame server resolving 'substantis.com'=
> > (in 'substantis.com'?): 69.17.65.22#53
> > Oct 27 01:00:20 testy kernel: process `dig' is using obsolete setsockopt =
> > SO_BSDCOMPAT
>
> What you need to look at are the log messages that occur when you start
> named. They'll tell you what zone files it's loading, and if it got any
> errors while doing this.
>
> --
> Barry Margolin, barmar at alum.mit.edu
> Arlington, MA
> *** PLEASE post questions in newsgroups, not directly to me ***
>
>
>
thanks for your quick response. please excuse the double posting (i misread a bounced email).
my external configuration files and my internal localhost files are as follows:
// /home/chroot-dns-ext/etc/named.conf for TrinityOS - 11/25/02
// Config file for a full authoritative --EXTERNAL-- DNS server
options {
//Remember, this is already CHROOTed. /var/named IS correct
directory "/var/named";
//Do NOT have the server listening on localhost or the internal interface
listen-on port 53 {
69.17.65.22;
};
// Clean the cache every 6 hours (default is 1).
cleaning-interval 360;
// Do NOT respond to DNS queries for any domains other than local zones
//
// All remote DNS lookups for this host and any internal machines will
// be served from the INTERNAL DNS server
// recursion no;
// Uncommenting this might help if you have to go through a
// firewall and things are not working out:
query-source address * port 53;
};
zone "." {
type hint;
file "root.hints.db";
};
// number 1 server http, dns, imap
zone "22.65.17.69.in-addr.arpa" in {
type master;
notify no;
file "named.69.17.65.22";
allow-transfer { 69.17.65.161; };
};
// number 2 server http, dns, imap
zone "161.65.17.69.in-addr.arpa" in {
type master;
notify no;
file "named.69.17.65.161";
allow-transfer { 69.17.65.161; };
};
// our first primary zone
zone "substantis.com" {
type master;
notify no;
file "named.substantis";
allow-transfer { 69.17.65.161; };
allow-query { 127/8; 192.168.0/24; };
};
// our second primary zone
zone "lubuto.org" {
type master;
notify no;
file "named.lubuto";
allow-transfer { 69.17.65.161; };
[EDITED FOR BREVITY'S SAKE]
//our eighth primary zone
zone "nelsonbeaudoin.com" {
type master;
file "named.nelsonbeaudoin";
notify no;
allow-transfer { 69.17.65.161; };
};
; /home/chroot/-dns-ext/var/named/named.substantis.com
$TTL 3H
substantis.com. 1D IN SOA testy.substantis.com. postmaster.substantis.com. (
2004102702
2H
1H
1W
1D )
substantis.com. 1W IN NS testy.substantis.com.
substantis.com. 1W IN NS ns2.speakeasy.net.
substantis.com. 1W IN NS ns1.speakeasy.net.
substantis.com. 3H IN MX 10 mail.substantis.com.
substantis.com. 3H IN MX 20 ns1.substantis.com.
substantis.com. IN TXT "v=spf1 a mx a:ns1.substantis.com -all"
localhost.substantis.com. 1W IN A 127.0.0.1
substantis.com. 3H IN A 69.17.65.22
testy.substantis.com. 1W IN A 69.17.65.22
ns1.substantis.com. 1W IN A 69.17.65.161
www.substantis.com. 3H IN A 69.17.65.22
mail.substantis.com. 3H IN A 69.17.65.22
; /home/chroot/-dns-ext/var/named/named.69.17.65.22
; ############################################################
; Start of Authority (Inverse Address Arpa) 69.17.65.22/32
; Filename: named.69.17.65.22 server number 1
; ############################################################
@ 604800 IN SOA testy.substantis.com. postmaster.substantis.com. (
2004092902 ; serial
10800 ; refresh (3 hour)
3600 ; retry (1 hour)
604800 ; expire (7 days)
86400 ) ; minimum (1 day)
;
; ############################################################
; Specify Name Servers for all Reverse Lookups (IN-ADDR.ARPA)
; ############################################################
@ 604800 IN NS testy.substantis.com.
@ 604800 IN NS ns1.substantis.com.
;
; ############################################################
; Iverse Address Arpa Records (PTR's)
; ############################################################
22.65.17.69.in-addr.arpa. 86400 IN PTR testy.substantis.com.
; 22.65.17.69.in-addr.arpa. 86400 IN PTR ns2.substantis.com.
; 22.65.17.69.in-addr.arpa. 86400 IN PTR mail02.substantis.com.
I AM ALSO PROVIDING MY LOCAL REVERSE LOOKUP (ALONG WITH THE /ETC/RESOLV.CONF AND /ETC/HOSTS FILES PREVIOUSLY POSTED, THESE ARE THE ONLY FILES I KNOW THAT AFFECT THE LAME SERVER ISSUE.
; "/home/chroot-dns-int/var/named/db.127.0.0"
; ############################################################
; Start of Authority (Inverse Address Arpa) for 127.0.0.0/8
; Filename: db.127.0.0
; ############################################################
@ 604800 IN SOA testy.substantis.com. postmaster.substantis.com. (
2004092201 ; serial
10800 ; refresh (3 hour)
3600 ; retry (1 hour)
604800 ; expire (7 days)
86400 ) ; minimum (1 day)
;
; ############################################################
; Specify Name Servers for all Reverse Lookups (IN-ADDR.ARPA)
; ############################################################
@ 604800 IN NS testy.substantis.com.
; ############################################################
; Iverse Address Arpa Records (PTR's)
; ############################################################
1 86400 IN PTR localhost.substantis.com.
[root at testy named]# cat /etc/hosts
# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 testy.substantis.com testy localhost
[root at testy named]#
[root at testy named]# cat /etc/resolv.conf
search substantis.com
nameserver 127.0.0.1
# nameserver 66.92.159.2
# nameserver 216.231.41.2
[root at testy named]#
[root at testy named]# cat /etc/host.conf
#Lookup names via /etc/hosts first then fall back to DNS.
order hosts, bind
# We have machines with multiple IP addresses.
multi on
[root at testy named]#
More information about the bind-users
mailing list