BIND9.2 / freebsd 4.4 / chroot not working
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Wed Apr 24 00:32:20 UTC 2002
> Hi,
>
> I can't seem to start bind in a chroot environment. I've checked file
> permissions (750), and file ownerships (bind:bind). I've run
> named-checkconf, and named-checkzone with success. I'm not sure
> what's up.
>
> I ran bind 9.2 chroot with relative ease; and after rebuilding my box
> and reinstalling the latest version, I can't seem to get it started.
> I'm sure it's something simple I've missed, but I'm clued as to what
> it is.
>
> # /usr/local/sbin/named -u bind -t /var/namedb/
>
> [ Output from /var/log/messages: ]
> Apr 24 03:05:19 ns1 named[212]: starting BIND 9.2.1rc2 -u bind -t
> /var/namedb/
> Apr 24 03:05:20 ns1 named[212]: none:0: open:
> /usr/local/etc/named.conf: file not found
> Apr 24 03:05:20 ns1 named[212]: loading configuration: file not found
> Apr 24 03:05:20 ns1 named[212]: exiting (due to fatal error)
>
> Line 2: "none:0" is not really telling me much, and I'm afraid I'm not
> superslick with generating better debug output from the system, so I
> haven't been able to gather much more information than this (apologies
> for the lack thereof).
Line 2 is telling you that named can't find /usr/local/etc/named.conf
in the chroot area (/var/namedb/usr/local/etc/named.conf).
> I've got named.conf and named.root in /var/namedb/etc/ where they
> should be.
This is not where the FreeBSD port expects to find named.conf.
Use "named -u bind -t /var/namedb -c /etc/named.conf"
> I've placed localtime in the root of chroot, /var/namedb/,
> (this worked for me last time). My named.conf looks like this:
It's /etc/localtime not /localtime. i.e. put a copy in
/var/named/etc.
>
> [ START named.conf ]
> options {
> directory "/";
> pid-file "/named.pid";
> allow-query { any; };
>
> forwarders {
> xxx.xxx.xxx.xxx;
> };
>
> dump-file "/s/named_dump.db";
> };
>
> zone "." {
> type hint;
> file "/etc/named.root";
> };
>
> zone "0.0.127.IN-ADDR.ARPA" {
> type master;
> file "/etc/localhost.rev";
> notify no;
> };
>
> zone
> "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.INT
> " {
> type master;
> file "/etc/localhost.rev";
> };
>
> zone "xxx.com" {
> type master;
> file "/m/xxx.com.db";
> allow-transfer {
> xxx.xxx.xxx.xxx;
> };
> };
>
> controls {
> inet * allow { any; } keys { "rndc-key"; };
> };
>
> key "rndc-key" {
> algorithm hmac-md5;
> secret "xxxxxxxxxxxxxxxxxxxxxxxxxx";
> };
>
>
> logging {
>
> channel default_log {
> file "/var/log/named.log" ;
> severity info;
>
> print-category yes;
> print-severity yes;
> print-time yes;
> };
>
> channel default_debug {
> file "/var/log/named.debug";
> severity dynamic;
> print-category yes;
> print-severity yes;
> print-time yes;
> };
>
> channel default_stderr {
> file "<stderr>";
> severity info;
>
> print-category yes;
> print-severity yes;
> print-time yes;
> };
>
> channel null {
> null;
> };
> category "default" { default_log; default_debug; };
> category "general" { default_log; default_debug; };
> category "queries" { default_log; default_debug; };
> category "lame-servers" { default_debug; };
> category "security" { default_log; };
> category "xfer-in" { default_log; default_debug; }; ers
> category "xfer-out" { default_log; default_debug; };
> category "notify" { default_log; default_debug; };
> };
> [ END named.conf ]
>
> Any help is appreciated.
>
> Jeff
>
>
>
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-users
mailing list