tcp_send: bind(query_source): Permission denied
Mark.Andrews at nominum.com
Mark.Andrews at nominum.com
Wed Feb 21 02:54:18 UTC 2001
>
> On Mon, 19 Feb 2001 12:21:28 +0100, sean.boran at swisscom.com wrote:
>
> >I saw your question on the ISC list, but without an answer so far.
> >
> >I've been seeing the same log entries, but don't understand why (also
> >8.2.3). Searching the BIND mail archives pointed me to your email..
> >
> >You're obviously and expert BIND user, you seem to indicate you know why it
> >happens, but are more interested in the logging problems.
> >
> >Can you tell me or point me to resources for dealing with this problem?
>
> I found the explanation using Deja to search the
> comp.protocols.dns.bind newsgroup, which mostly mirrors the
> bind-users mailing list. The problem arises because a query fails as
> a UDP packet and must be retried using TCP. The patch posted by Mark
> Andrews of Nominum makes the TCP connection using a random
> non-priviliged source port. Without the patch, the TCP connection is
> attempted using the port specified in the config file, and fails.
>
> My question is why this message is logged with syslog, not through a
> named channel. Without this, I can't correlate the error message with a
> specific query.
It is logged to a channel.
>
> For reference, the message appears to come from
> BIND-8.2.3/src/bin/named/ns_main.c, line 782. The patched file can be
> found in CVS as /proj/cvs/isc/bind8/src/bin/named/ns_main.c, rev
> 8.143.
>
> Ken
> mailto:shiva at well.com
> http://www.sewingwitch.com/ken/
> [If answering a mailing list posting, please don't cc me your reply. I'll tak
> e my answer on the list.]
>
>
>
--
Mark Andrews, Nominum Inc.
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at nominum.com
More information about the bind-users
mailing list