Nameserver behind firewall

Michael Kjorling michael at kjorling.com
Tue Jul 31 17:02:11 UTC 2001 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I have no problems at all:

	; <<>> DiG 9.1.3 <<>> @ns1.mydomain.com. mydomain.com. soa
	;; global options:  printcmd
	;; Got answer:
	;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62082
	;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 4

	;; QUESTION SECTION:
	;mydomain.com.			IN	SOA

	;; ANSWER SECTION:
	mydomain.com.		2560	IN	SOA	ns1.mydomain.com. hostmaster.mydomain.com. 996591852 16384 2048 1048576 2560

	;; AUTHORITY SECTION:
	mydomain.com.		259200	IN	NS	ns1.mydomain.com.
	mydomain.com.		259200	IN	NS	ns2.mydomain.com.
	mydomain.com.		259200	IN	NS	ns3.mydomain.com.
	mydomain.com.		259200	IN	NS	ns4.mydomain.com.

	;; ADDITIONAL SECTION:
	ns1.mydomain.com.	86400	IN	A	216.34.13.236
	ns2.mydomain.com.	86400	IN	A	64.75.34.132
	ns3.mydomain.com.	86400	IN	A	64.75.34.140
	ns4.mydomain.com.	86400	IN	A	64.75.34.134

	;; Query time: 227 msec
	;; SERVER: 216.34.13.236#53(ns1.mydomain.com.)
	;; WHEN: Tue Jul 31 19:00:25 2001
	;; MSG SIZE  rcvd: 213


Michael Kjörling


On Jul 31 2001 04:33 -0700, Andrew L wrote:

> I'm having problems getting BIND to work correctly.
>
> I'm running BIND 9.x on Redhat Linux 7.1
>
> I've set up the nameserver so that I can dig @locahost on the nameserver and
> get the correct result.
> But if I try dig @ns1.mydomain.com I get a connection timed out; no servers
> could be reached.
> My network's ip address is mapped to ns1.mydomain.com.
>
> netstat -a reports that  localhost.localdomain:domain is listening on tcp
> and udp. It also reports that my internal ip address is listening on the
> domain port on tcp and udp. My nameserver is behind a firewall on which I've
> got the "domain" port mapped to the nameserver.
>
> I tried nslookup from another computer behind the firewall and I cannot get
> a response from the nameserver, but I'm able to telnet into it from both
> inside and outside the firewall, using the same port mapping techniques.
>
> What could possibly be the problem?
>
> Thanks in advance for any help
> ,Andy

- -- 
Michael Kjörling - michael at kjorling.com - PGP: 8A70E33E
Manager Wolf.COM -- Programmer -- Network Administrator
"We must be the change we wish to see" (Mahatma Gandhi)

^..^     Support the wolves in Norway -- go to     ^..^
 \/   http://home.no.net/ulvelist/protest_int.htm   \/

***** Please only send me emails which concern me *****

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD4DBQE7ZuSWKqN7/Ypw4z4RAl6EAJdnLPoGCdymH7dJixWJ7smV3rRgAKCXzVna
LuwlEwNfy9GQ+eJHJeFTVA==
=mNa+
-----END PGP SIGNATURE-----

More information about the bind-users mailing list