Req: Total beginners help - Win Q.
Techie
nomail at here.not.easynews.com
Tue Dec 20 04:57:00 UTC 2005
Danny Mayer <mayer at gis.net> wrote in news:do7sm7$28pe$1 at sf1.isc.org:
> Tony Schenk wrote:
>
>> Techie-
>>
>> Would you be willing to post what you've been using that failed?
>> Although I'm not positive, I think that 1069 error is security related
>> and may actually not be related to your configuration at all.
>>
>> -Tony
>>
> No, it means he didn't read his Application event log to find out what
> was wrong.
>
> Danny
>
>
>
Correcting myself... Sorry Danny, I'm such a moron sometimes (^^)
At least I can lugh at myself.
I found out how to get that info and finally am starting to get
somewhere.
However, it seems very odd that the named.conf file is being loaded, but
during the parsing of the file, it cannot find the named.root file with
root server entries which is located in the same directory as the
named.conf file.
So, for Tony Schenk's request...
The problem is that the paths are not correctly specified somehow and I
have tried every variation of the ones I can think of, but apparently not
the correct one.
Below are the config files I am using at this moment for the initial
test.
Also note, the RNDC.KEY is located in "etc" as well, brand spanking new
made by the std. rndc-confgen -a command.
Also, the setup was done and I assigned a short password to the BIND.
When I start the named.exe using the dos debug option named.exe -g
it says it has a parsing error after throwing a fit about not finding the
file named.root, containing the root server listings.
Excuse the linebreaks below, but if you read this in a text editor of
choice it probably looks better since I edit most files using notepad
without wordwrap.
---NAMED.CONF---------------------------------------------------------
#
# Requires:
# named.ca
# zones/example.com.zone
# zones/10.0.0.rev
#
#########################################################################
#######
# Server Configuration
#
options {
# Set the working directory from which all relative paths are based
# For the win2k default install "C:\WINNT\system32\dns\etc"
#
directory "/";
#I am in the "C:\windows\system32\dns\etc" directory already. / MRJ
# RECURSION - Required for caching servers
# Default: yes
# Values : yes, no
#
# yes: Attempt to resolve requests we are not authoritative for
# no : Do not resolve requests we are not authoritative for
#
recursion yes;
# ALLOW-RECURSION - Who may use our caching server?
# Default: any;
# Values : any, none, (addresslist)
#
# any : anybody may use the caching server
# none : noone may use the caching server
# address: List of IP addresses that may use the caching server.
#
allow-recursion { localhost; localnets; };
# FORWARD - Recommended for caching servers
# Default: first
# Values : first, only
#
# first: Query "forwarders" first, then resolve request ourself
# only : Only query the "forwarders" to resolve requests
#
#forward first;
# FORWARDERS - Required if "forward" is used
# Default: (no forwarding)
# Values : (addresslist)
#
# It is recommended that you use your ISP's caching server
addresses
# Example: forwarders { 127.0.0.1; 127.0.0.2; }
#
#forwarders { };
# QUERY SOURCE - Useful for caching servers behind a firewall
# Default: address * port *
# Values : The IP address and port to use as the source of queries
to other servers
#
#query-source address * port 53;
# NOTIFY - Relevant to authoritative servers
# Default: yes
# Values : yes, explicit, no
#
# yes : Send DNS NOTIFY messages to slave servers in zone NS
records when zone changes
# explicit: Only send DNS NOTIFY messages to "also-notify" hosts
# no : Never automatically send DNS NOTIFY messages
#
notify no;
};
#########################################################################
#######
# Logging Configuration
#
logging {
#
# Define channels for the two log files
#
channel query_log {
severity info;
print-time yes;
file "log/query.log" versions 3 size 100M;
};
channel activity_log {
severity info;
print-time yes;
print-category yes;
print-severity yes;
file "log/activity.log" versions 3 size 100M;
};
#
# Send the interesting messages to the appropriate channels
#
category queries { query_log; };
category default { activity_log; };
category xfer-in { activity_log; };
category xfer-out { activity_log; };
category notify { activity_log; };
category security { activity_log; };
category update { activity_log; };
#category update-security { activity_log; }; # BIND 9.3 only
#
# Dump all uninteresting messages
#
category network { null; };
category lame-servers { null; };
};
#########################################################################
#######
# Zone Configuration
#
#
# Specify the root name servers
#
zone "." IN {
type hint;
#this should be located in "C:\windows\system32\dns\etc" not to mix with
#all the other zone files. Just my preference / MRJ
file "named.root";
};
#
# Configure ourself as the host for example.com
#
zone "example.com" IN {
type master;
file "zones/example.com.zone";
};
#
# Reverse IP mapping for 10.0.0.x
#
zone "0.0.10.in-addr.arpa" {
type master;
file "zones/10.0.0.rev";
};
---END NAMED.CONF-------------------------------------------------------
--10.0.0.rev CONTENTS---------------------------------------------------
$TTL 900 ; 900 seconds default record (T)ime (T)o (L)ive
in cache
; From sample by SilentRage
; http://www.dollardns.net/bind/
@ SOA ns1.example.com. ( ; ns1.example.com is the
primary server for example.com
postmaster.example.com. ; contact email for example.com
is admin at example.com
2004041700 ; Serial ID in reverse
date format
21600 ; Refresh interval for
slave servers
1800 ; Retry interval for
slave servers
604800 ; Expire limit for cached
info on slave servers
900 ) ; Minimum Cache TTL in
zone records
@ NS ns1.example.com. ; ns1.example.com is a
host for 10.0.0.x
@ NS ns2.example.com. ; ns2.example.com is a
host for 10.0.0.x
;2 PTR ns1.example.com. ; 10.0.0.2 is
ns1.example.com, with last IP octet 2
;2 PTR ns2.example.com. ; 10.0.0.2 is
ns2.example.com, with last IP octet 2
2 PTR mail.example.com. ; 10.0.0.2 is
mail.example.com, with last IP octet 2
;2 PTR www.example.com. ; 10.0.0.2 is
www.example.com, with last IP octet 2
;MRJ NOTE!
;COMMENT THE ODD BALS OUT SINCE WE CAN ONLY HAVE ONE PTR RECORD PER
ENDING OCTET!
;IF THERE IS A MAIL SERVER ON IT, USE THAT PRIMARILY FOR PTR TRANSFER
PROPERLY!
--End 10.0.0.rev CONTENTS------------------------------------------------
--example.com.zone CONTENTS----------------------------------------------
$TTL 900 ; 900 seconds default record (T)ime (T)o (L)ive in
cache
; From sample by SilentRage
; http://www.dollardns.net/bind/
@ SOA ns1 ( ; ns1.example.com is the primary server for
example.com
postmaster ; contact email for example.com is
postmaster at example.com
2004041700 ; Serial ID in reverse date format
21600 ; Refresh interval for slave servers
1800 ; Retry interval for slave servers
604800 ; Expire limit for cached info on slave
servers
900 ) ; Minimum Cache TTL in zone records
@ NS ns1 ; ns1.example.com is a host for example.com
@ NS ns2 ; ns2.example.com is a host for example.com
@ A 10.0.0.2 ; example.com's IP address is 10.0.0.2
@ MX 10 mail ; Mail for *@example.com is sent to
mail.example.com
ns1 A 10.0.0.2 ; ns1.example.com's IP address is 10.0.0.2
ns2 A 10.0.0.2 ; ns2.example.com's IP address is 10.0.0.2
mail A 10.0.0.2 ; mail.example.com's IP address is 10.0.0.2
www A 10.0.0.2 ; www.example.com's IP address is 10.0.0.2
--end example.com.zone CONTENTS------------------------------------------
More information about the bind-users
mailing list