Can't Receive Mail after BIND Upgrade

Kevin Darcy kcd at daimlerchrysler.com
Fri May 18 23:04:04 UTC 2001 

Well, if they are trying to send mail *to* you, I think the only DNS
lookups they should be doing are forward DNS lookups (MX records,
A records). E.g. if your domain is example.com, with MX records pointing
to other example.com names, then they should only be looking things up in
example.com.

The named.conf you show defines your nameserver as only authoritative for
reverse zones. Based on that evidence, their problem would appear to be
unrelated to your upgrade, since their nameserver(s) shouldn't even be
talking to your nameserver(s) in order to deliver mail to you.

Or, was there important configuration information "cleaned up for
security"?


- Kevin

Shon Stephens wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Upgraded to BIND 9.1.1. Now one of our ISP partners can't sendmail to
> our sendmail server. They recieve a "nameserver timeout" error on
> their sendmail server. Our sendmail configuration has not changed,
> neither have the zone files. Only the version of BIND. Here is my
> named.conf file. Its been cleaned up for security. Any ideas? I don't
> know yet what type or version of nameserver the partner is using.
>
> options {
>         directory "/var/named";
>         // named-xfer OBSOLETE IN BIND9
>         dump-file "/var/named/dump.db";
>         // memstatistics-file NOT YET IMPLEMENTED IN BIND9
>         pid-file "/var/named/named.pid";
>         statistics-file "/var/named/named.stats";
>         auth-nxdomain yes;
>         recursion yes;
>         zone-statistics yes;
>         additional-from-auth yes;
>         additional-from-cache yes;
>         allow-notify { none; };
>         allow-query { any; };
>         allow-recursion { any; };
>         blackhole { none; };
>         max-transfer-time-in 30;
>         max-transfer-idle-in 30;
>         transfer-format many-answers;
>         transfers-in 10;
>         cleaning-interval 30;
>         // statistics-interval NOT YET IMPLEMENTED IN BIND9.
>         max-ncache-ttl 86400;
>         max-cache-ttl 86400;
> };
> zone "." {
>         type hint;
>         file "named.root";
> };
> zone "0.0.127.in-addr.arpa" {
>         type master;
>         allow-update { none; };
>         file "127.0.0.db";
> };
> zone "1.1.10.in-addr.arpa" {
>         type master;
>         allow-update { none; };
>         file "10.1.1.db";
> };
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
>
> iQA/AwUBOwKQXEwGLkuD4lDdEQI/wwCeP3MS7J8ViCJ53gSHN8Svyd2wp8gAoMqL
> ErVmANy8aI5/7F4+5PELmc2W
> =z2MZ
> -----END PGP SIGNATURE-----

More information about the bind-users mailing list