???? ERROR MESSAGES ???
Kevin Darcy
kcd at daimlerchrysler.com
Thu Aug 3 23:00:20 UTC 2000
Try doing a root NS query from your internal server, to the firewall, using a
command-line utility like nslookup in debug mode or (preferrably) dig. Do you
get the same results (SERVFAIL)? If no, then your internal nameserver isn't
configured the way you think it is, since this exactly mimics what your
nameserver should be doing if configured as "forward only" to your firewall.
If you get a SERVFAIL on the internal server, then try the same query from the
command line on the firewall. Same results? Then your firewall is having a
problem talking to Internet nameservers for some reason. Look for some sort of
filters blocking your packets.
If the internal server doesn't work, and the firewall does, then it would
appear that they cannot communicate with each other properly. Check your
firewall rules/filters/logs/etc..
- Kevin
Monereau, Alex wrote:
> Can anyone tell me why I'm constantly receiving these messages in my
> internal DNS server logs ????
> I have several (primary/slave) internal DNS servers, with a "forward only"
> statement which points to my firewall which is also running as a primary DNS
> server which has a cache file pointing to all the root servers.
>
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> A.ROOT-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> G.ROOT-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> E.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> F.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> F.ROOT-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> J.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> K.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> A.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> M.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> H.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> C.GTLD-SERVERS.net?
> Jul 20 15:32:09 attila named[14298]: sysquery: findns error (SERVFAIL) on
> I.GTLD-SERVERS.net?
> Jul 20 15:32:10 attila named[14298]: sysquery: findns error (2) on
> pivsbh1.MS.COM?
> Jul 20 15:32:10 attila named[14298]: sysquery: findns error (2) on
> hqvsbh1.MS.COM?
> Jul 20 15:32:41 attila named[14298]: sysquery: findns error (SERVFAIL) on
> DNSAUTH1.SYS.GTEI.NET?
> Jul 20 15:32:41 attila named[14298]: sysquery: findns error (SERVFAIL) on
> DNSAUTH2.SYS.GTEI.NET?
> Jul 20 15:32:41 attila named[14298]: sysquery: findns error (SERVFAIL) on
> DNSAUTH3.SYS.GTEI.NET?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> C.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> I.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> A.ROOT-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> G.ROOT-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> E.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> F.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> F.ROOT-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> J.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> K.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> A.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> M.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> H.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> C.GTLD-SERVERS.net?
> Jul 20 15:34:05 attila named[14300]: sysquery: findns error (SERVFAIL) on
> I.GTLD-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> A.ROOT-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> G.ROOT-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> E.GTLD-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> F.GTLD-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> F.ROOT-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> J.GTLD-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> K.GTLD-SERVERS.net?
> Jul 20 15:34:06 attila named[14300]: sysquery: findns error (SERVFAIL) on
> A.GTLD-SERVERS.net?
More information about the bind-users
mailing list