Bind not listening?

Aaron Dougherty chicken at trade-federation.com
Thu Aug 16 17:34:24 UTC 2001 

Howdy,
I'm not running ipfilter or ipchains anywhere, and netstat -na does not
report anything listening on 53.

when I sniff the wire (on localhsot, as eth0 is really busy with
requests), I get the following, the request/response will repeat
themselves, while telnet continues to try to connect, as opposed to
getting just 2 lines when connecting to a port with no listener.

10:26:49.247681 > naboo.swsim.com.4819 > naboo.swsim.com.domain: S
2333532338:2333532338(0) win 31072 <mss 3884,sackOK,timestamp 15380222
0,nop,wscale 0> (DF) (ttl 64, id 53224)

10:26:49.247681 < naboo.swsim.com.4819 > naboo.swsim.com.domain: S
2333532338:2333532338(0) win 31072 <mss 3884,sackOK,timestamp 15380222
0,nop,wscale 0> (DF) (ttl 64, id 53224)

Thanks!

-Aaron

On Wed, 15 Aug 2001 Marc.Thach at radianz.com wrote:

> 
> netstat -na will tell you if there's a listener on the port.
> Are you running any filtering software (like ipchains or ipfilter) on the
> same server?
> If you sniff the wire, what do you see when you telnet to port 53, do you
> get a complete 3-way handshake?
> Marc TXK
> 
> 
> 
>                                                                                                                         
>                     Aaron Dougherty                                                                                     
>                     <chicken at trade-feder        To:                                                                     
>                     ation.com>                  cc:     comp-protocols-dns-bind at moderators.isc.org                      
>                     Sent by:                    Subject:     Re: Bind not listening?                                    
>                     bind-users-bounce at is                                                                                
>                     c.org                                                                                               
>                                                                                                                         
>                                                                                                                         
>                     14/08/2001 23:25                                                                                    
>                                                                                                                         
>                                                                                                                         
> 
> 
> 
> 
> 
> > In article <9lc58s$fm2 at pub3.rc.vix.com>,
> > Aaron Dougherty  <chicken at trade-federation.com> wrote:
> > >BUT, if I telnet port 53 on the server, the connection hangs, and of
> > >course an nslookup against that server fails. Any hints or clues as to
> why
> > >this would be happening would be greatly appreciated. (Even answeres are
> > >great! ^_^)
> >
> > I tried to connect to both your servers (naboo.swsim.com and
> > tatooine.swsim.com), trying both TCP and UDP, and they never connected,
> > although pings and traceroutes succeeded.  My guess is that there's some
> > packet filtering going on, blocking packets to TCP and UDP port 53 on
> your
> > LAN.
> 
> Even from localhost I can't open port 53.
> 
> [root at naboo /etc]# hostname; domainname; ifconfig -a | grep 'inet addr'
> naboo
> swsim.com
>           inet addr:66.12.147.134  Bcast:66.12.147.255  Mask:255.255.255.0
>           inet addr:127.0.0.1  Mask:255.0.0.0
> 
> [root at naboo /etc]# telnet localhost 53
> Trying 127.0.0.1...
> 
> [root at naboo /etc]# telnet 66.12.147.134 53
> Trying 66.12.147.134...
> 
> Thanks!
> 
> -Aaron
> 
> -------------------------------------------------------------
> -------------------------------------------------------------
> 
> 
> > If you haven't installed a firewall, check with your ISP (GTE.net) to
> find
> > out if they're filtering.
> >
> > >A summary of my syslog (everything looks good to me)
> > >
> > >Aug 14 13:32:59 naboo named[1216]: starting (/etc/named.conf).  named
> > >8.2.3-REL Sat Jan 27 05:11:05 EST 2001 ^Iprospector at por
> > >ky.devel.redhat.com:/usr/src/bs/BUILD/bind-8.2.3/src/bin/named
> > >Aug 14 13:32:59 naboo named[1216]: hint zone "" (IN) loaded (serial 0)
> > >Aug 14 13:33:00 naboo named[1216]: Zone "0.0.127.in-addr.arpa" (file
> > >zone/127.0.0): No default TTL ($TTL <value>) set, using
> > >SOA minimum instead
> > >Aug 14 13:33:00 naboo named[1216]: master zone
> > >"0.0.127.in-addr.arpa" (IN) loaded (serial 199609203)
> > >Aug 14 13:33:00 naboo named[1216]: Zone "147.12.66.in-addr.arpa" (file
> > >zone/66.12.147): No default TTL ($TTL <value>) set, us
> > >ing SOA minimum instead
> > >Aug 14 13:33:00 naboo named[1216]: master zone
> > >"147.12.66.in-addr.arpa" (IN) loaded (serial 199609203)
> > >Aug 14 13:33:00 naboo named[1216]: Zone "swsim.com" (file
> > >zone/swsim.com): No default TTL ($TTL <value>) set, using SOA minim
> > >um instead
> > >Aug 14 13:33:00 naboo named[1216]: master zone "swsim.com" (IN) loaded
> > >(serial 199609206)
> > >Aug 14 13:33:00 naboo named[1216]: listening on [127.0.0.1].53 (lo)
> > >Aug 14 13:33:00 naboo named[1216]: listening on [66.12.147.134].53
> (eth0)
> > >Aug 14 13:33:00 naboo named[1216]: Forwarding source address is
> > >[0.0.0.0].1031
> > >Aug 14 13:33:00 naboo named[1217]: Ready to answer queries.
> >
> >
> > --
> > Barry Margolin, barmar at genuity.net
> > Genuity, Woburn, MA
> > *** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to
> newsgroups.
> > Please DON'T copy followups to me -- I'll assume it wasn't posted to the
> group.
> >
> 
> 
> 
> 
> 
> 
>

More information about the bind-users mailing list