probrem with external view
Mark.Andrews at nominum.com
Mark.Andrews at nominum.com
Fri Mar 2 13:22:20 UTC 2001
You have a flag set to yes for one view and no for the
other.
Yes this is a deliberately obscure answer because like just
about everyone else on this list we are fed up people
obscuring the problem and then asking for help. It means
that you don't respect us. It also means that we have to
guess and that you are less likely to get an answer.
Mark
>
> Dear
>
> I got a problem when I used view in named.conf.
> My problem is that it can't reach root servers when external view is
> used.
>
> this is the debug when external view answered. (debug level is 5)
>
> Mar 02 15:50:18.839 client xxx.yyy.zzz.52#1027: using view 'external'
> Mar 02 15:50:18.839 client xxx.yyy.zzz.52#1027: request is not signed
> Mar 02 15:50:18.839 client xxx.yyy.zzz.52#1027: query
> Mar 02 15:50:18.839 client xxx.yyy.zzz.52#1027: query approved
> Mar 02 15:50:18.840 client xxx.yyy.zzz.52#1027: send
> Mar 02 15:50:18.840 client xxx.yyy.zzz.52#1027: sendto
> Mar 02 15:50:18.840 client xxx.yyy.zzz.52#1027: senddone
> Mar 02 15:50:18.840 client xxx.yyy.zzz.52#1027: next
> Mar 02 15:50:18.840 client xxx.yyy.zzz.52#1027: endrequest
>
> and dig is like this.
>
> ; <<>> DiG 9.1.0 <<>> www.dion.ne.jp
> ;; global options: printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 31363
> ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 0
>
> ;; QUESTION SECTION:
> ;www.dion.ne.jp. IN A
>
> ;; AUTHORITY SECTION:
> . 3600000 IN NS C.ROOT-SERVERS.NET.
> . 3600000 IN NS D.ROOT-SERVERS.NET.
> . 3600000 IN NS E.ROOT-SERVERS.NET.
> . 3600000 IN NS F.ROOT-SERVERS.NET.
> . 3600000 IN NS G.ROOT-SERVERS.NET.
> . 3600000 IN NS H.ROOT-SERVERS.NET.
> . 3600000 IN NS I.ROOT-SERVERS.NET.
> . 3600000 IN NS J.ROOT-SERVERS.NET.
> . 3600000 IN NS K.ROOT-SERVERS.NET.
> . 3600000 IN NS L.ROOT-SERVERS.NET.
> . 3600000 IN NS M.ROOT-SERVERS.NET.
> . 3600000 IN NS A.ROOT-SERVERS.NET.
> . 3600000 IN NS B.ROOT-SERVERS.NET.
>
> ;; Query time: 5 msec
> ;; SERVER: xxx.yyy.zzz.52#53(xxx.yyy.xxx.52)
> ;; WHEN: Fri Mar 2 15:50:18 2001
> ;; MSG SIZE rcvd: 243
>
> My name.conf is
>
> options {
> directory "/etc/namedb";
> pid-file "/var/run/named.pid";
> listen-on-v6 { none; };
> notify yes;
> auth-nxdomain no;
> };
>
> //include "../../common/controls.conf";
>
> view "internal" {
> match-clients { xxx.yyy.zzz.62; };
> recursion yes;
>
> zone "." {
> type hint;
> file "named.root";
> };
>
> zone "mydomain.ne.jp" {
> type master;
> file "internal/li-knight.ne.jp";
> // allow-update { any; };
> };
> zone "0.16.172.in-addr.arpa" {
> type master;
> file "internal/0.16.172.in-addr.arpa";
> };
> };
>
> view "external" {
> match-clients { any; };
> recursion no;
>
> zone "." {
> type hint;
> file "named.root";
> };
>
> zone "mydomain.ne.jp" {
> type master;
> file "external/mydomain.ne.jp";
> };
> zone "48h.zzz.yyy.xxx.in-addr.arpa" {
> type master;
> file "external/48h.zzz.yyy.xxx.in-addr.arpa";
> };
> };
>
> I didn't have any problem when internal view answers, and when I didn't
> use view.
>
> Please let me know to solve this problem.
> Thanks.
>
>
--
Mark Andrews, Nominum Inc.
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at nominum.com
More information about the bind-users
mailing list